Does enabling Bitlocker affect Computer Bios/Uefi System Firmware Updates?


very_452001

Member
Local time
10:19 AM
Posts
142
OS
Windows 11
Hello,

I read on the Internet that enabling Bitlocker stops firmware updates for hardware in a computer system from being installed unless Bitocker is turned off.

Is this true?
 
Windows Build/Version
Windows 11 Pro

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    Acer Swift Edge SFA16-41
    CPU
    AMD Ryzen 5 6600U
Does this answer your question. Updating the BIOS on Dell Systems With BitLocker Enabled | Dell US

You have HP. Here's what they say.

Prepare your computer for the BIOS update​


To prevent possible problems, close any open applications, and temporarily disable antivirus software and BitLocker before updating the BIOS.

  1. Close any open applications.
  2. Temporarily disable your antivirus software. In Windows, search for and open Security and Maintenance settings, and then click Security to access virus protection settings.
  3. Temporarily disable BitLocker drive encryption. In Windows, search for and open Manage Bitlocker. Click Suspend protection, and then click Yes. Be prepared and have the BitLocker recovery key available.

    CAUTION:
    If BitLocker is not disabled, the next time you restart the computer the BitLocker key might not be recognized. If you do not know the BitLocker recovery key, you might lose data or need to reinstall Windows.
 
Last edited:

My Computers

System One System Two

  • OS
    Windows 11 Pro 24H2 26100.4061
    Computer type
    PC/Desktop
    Manufacturer/Model
    Dell Optiplex 7080
    CPU
    i9-10900 10 core 20 threads
    Motherboard
    DELL 0J37VM
    Memory
    32 gb
    Graphics Card(s)
    none-Intel UHD Graphics 630
    Sound Card
    Integrated Realtek
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    1tb Solidigm m.2 nvme+256gb SKHynix m.2 nvme /External drives 512gb Samsung m.2 sata+1tb Kingston m2.nvme+ 4gb Solidigm nvme
    PSU
    500w
    Case
    MT
    Cooling
    Dell Premium
    Keyboard
    Logitech wired
    Mouse
    Logitech wireless
    Internet Speed
    so slow I'm too embarrassed to tell
    Browser
    #1 Edge #2 Firefox
    Antivirus
    Defender+MWB Premium
  • Operating System
    Windows 11 Pro 24H2 26100.4061
    Computer type
    PC/Desktop
    Manufacturer/Model
    Beelink Mini PC SER5
    CPU
    AMD Ryzen 7 6800U
    Memory
    32 gb
    Graphics card(s)
    integrated
    Sound Card
    integrated
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    1TB Crucial nvme
    Mouse
    Logitech wireless
    Keyboard
    Logitech wired
    Internet Speed
    still too embarrassed to tell
    Browser
    Firefox
    Antivirus
    Defender
    Other Info
    System 3 is non compliant Dell 9020 i7-4770/24gb ram Win11 PRO 26100.4061
Hello,

I read on the Internet that enabling Bitlocker stops firmware updates for hardware in a computer system from being installed unless Bitocker is turned off.

Is this true?
No it is not actually true but if you do not suspend bitlocker, you will need the recovery key next time you boot after the update. I have heard claims you need to enter every time thereafter but I cannot say for sure.

In the end you would have to turn bitlocker off and in again anyway.

To avoid hassle, suspending bitlocker though is advisable. This minimises risk of ending up with an unaccessible drive.

Keeping your recovery keys safe is really important, and best place is to store them on an MS account.
 

My Computer

System One

  • OS
    Windows 11 Pro + Win11 Canary VM.
    Computer type
    Laptop
    Manufacturer/Model
    ASUS Zenbook 14
    CPU
    I9 13th gen i9-13900H 2.60 GHZ
    Motherboard
    Yep, Laptop has one.
    Memory
    16 GB soldered
    Graphics Card(s)
    Integrated Intel Iris XE
    Sound Card
    Realtek built in
    Monitor(s) Displays
    laptop OLED screen
    Screen Resolution
    2880x1800 touchscreen
    Hard Drives
    1 TB NVME SSD (only weakness is only one slot)
    PSU
    Internal + 65W thunderbolt USB4 charger
    Case
    Yep, got one
    Cooling
    Stella Artois (UK pint cans - 568 ml) - extra cost.
    Keyboard
    Built in UK keybd
    Mouse
    Bluetooth , wireless dongled, wired
    Internet Speed
    900 mbs (ethernet), wifi 6 typical 350-450 mb/s both up and down
    Browser
    Edge
    Antivirus
    Defender
    Other Info
    TPM 2.0, 2xUSB4 thunderbolt, 1xUsb3 (usb a), 1xUsb-c, hdmi out, 3.5 mm audio out/in combo, ASUS backlit trackpad (inc. switchable number pad)

    Macrium Reflect Home V8
    Office 365 Family (6 users each 1TB onedrive space)
    Hyper-V (a vm runs almost as fast as my older laptop)
Does this answer your question. Updating the BIOS on Dell Systems With BitLocker Enabled | Dell US

You have HP. Here's what they say.

Prepare your computer for the BIOS update​


To prevent possible problems, close any open applications, and temporarily disable antivirus software and BitLocker before updating the BIOS.

  1. Close any open applications.
  2. Temporarily disable your antivirus software. In Windows, search for and open Security and Maintenance settings, and then click Security to access virus protection settings.
  3. Temporarily disable BitLocker drive encryption. In Windows, search for and open Manage Bitlocker. Click Suspend protection, and then click Yes. Be prepared and have the BitLocker recovery key available.

    CAUTION:
    If BitLocker is not disabled, the next time you restart the computer the BitLocker key might not be recognized. If you do not know the BitLocker recovery key, you might lose data or need to reinstall Windows.

The circumstances are that I am using a modern Acer laptop that I bought recently and it has Windows 11 Pro. I noticed that Windows Update updated my Bios. To clarify does windows update manages Bios updates for Laptops automatically but not for Desktop PC's?

If that is the case where windows update manages Bios updates for my laptop automatically in the background and I turn on Bitlocker for my laptop then your telling me by doing this then I risk losing my data & reinstalling windows?
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    Acer Swift Edge SFA16-41
    CPU
    AMD Ryzen 5 6600U
No it is not actually true but if you do not suspend bitlocker, you will need the recovery key next time you boot after the update. I have heard claims you need to enter every time thereafter but I cannot say for sure.

In the end you would have to turn bitlocker off and in again anyway.

To avoid hassle, suspending bitlocker though is advisable. This minimises risk of ending up with an unaccessible drive.

Keeping your recovery keys safe is really important, and best place is to store them on an MS account.

I thought Recovery Keys are only required if you have forgotten your password. To confirm I still need the recovery key whether I know the password or forgotten it?

Apart from Bios updates do you know what else does Bitlocker affects?
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    Acer Swift Edge SFA16-41
    CPU
    AMD Ryzen 5 6600U
I have a Dell and use Bitlocker and always followed the correct procedure for updating firmware in the past. Never any issues.

I have also noticed Windows Update now carries these firmware updates as part of the normal updates cycle and these also update correctly with no manual intervention. If I recall the updates do suspend bitlocker (have a recollection of seeing that text flash up during the update) but it all happens seamlessly.

I would say if you are updating manually yourself then always suspend Bitlocker. It takes seconds to do and could save the day.
 

My Computer

System One

  • OS
    W11 Pro x64 24H2 Dev
    Computer type
    Laptop
    Manufacturer/Model
    Dell 7760 Mobile Precision 17"
    CPU
    Intel i5
    Motherboard
    Unknown
    Memory
    8Gb
    Graphics Card(s)
    Intel HD Graphics
    Sound Card
    Realtek
    Monitor(s) Displays
    Internal
    Hard Drives
    2 x 256Gb SSD
    PSU
    Dell 240 watt
    Mouse
    Dell Premier Bluetooth
    Internet Speed
    50Mbps
    Browser
    Edge
    Antivirus
    Default Microsoft Security

My Computers

System One System Two

  • OS
    Windows 11 Pro 24H2 26100.4061
    Computer type
    PC/Desktop
    Manufacturer/Model
    Dell Optiplex 7080
    CPU
    i9-10900 10 core 20 threads
    Motherboard
    DELL 0J37VM
    Memory
    32 gb
    Graphics Card(s)
    none-Intel UHD Graphics 630
    Sound Card
    Integrated Realtek
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    1tb Solidigm m.2 nvme+256gb SKHynix m.2 nvme /External drives 512gb Samsung m.2 sata+1tb Kingston m2.nvme+ 4gb Solidigm nvme
    PSU
    500w
    Case
    MT
    Cooling
    Dell Premium
    Keyboard
    Logitech wired
    Mouse
    Logitech wireless
    Internet Speed
    so slow I'm too embarrassed to tell
    Browser
    #1 Edge #2 Firefox
    Antivirus
    Defender+MWB Premium
  • Operating System
    Windows 11 Pro 24H2 26100.4061
    Computer type
    PC/Desktop
    Manufacturer/Model
    Beelink Mini PC SER5
    CPU
    AMD Ryzen 7 6800U
    Memory
    32 gb
    Graphics card(s)
    integrated
    Sound Card
    integrated
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    1TB Crucial nvme
    Mouse
    Logitech wireless
    Keyboard
    Logitech wired
    Internet Speed
    still too embarrassed to tell
    Browser
    Firefox
    Antivirus
    Defender
    Other Info
    System 3 is non compliant Dell 9020 i7-4770/24gb ram Win11 PRO 26100.4061
I thought Recovery Keys are only required if you have forgotten your password. To confirm I still need the recovery key whether I know the password or forgotten it?

Apart from Bios updates do you know what else does Bitlocker affects?
As I said - if you do bios updates you will need the recovery key.
 

My Computer

System One

  • OS
    Windows 11 Pro + Win11 Canary VM.
    Computer type
    Laptop
    Manufacturer/Model
    ASUS Zenbook 14
    CPU
    I9 13th gen i9-13900H 2.60 GHZ
    Motherboard
    Yep, Laptop has one.
    Memory
    16 GB soldered
    Graphics Card(s)
    Integrated Intel Iris XE
    Sound Card
    Realtek built in
    Monitor(s) Displays
    laptop OLED screen
    Screen Resolution
    2880x1800 touchscreen
    Hard Drives
    1 TB NVME SSD (only weakness is only one slot)
    PSU
    Internal + 65W thunderbolt USB4 charger
    Case
    Yep, got one
    Cooling
    Stella Artois (UK pint cans - 568 ml) - extra cost.
    Keyboard
    Built in UK keybd
    Mouse
    Bluetooth , wireless dongled, wired
    Internet Speed
    900 mbs (ethernet), wifi 6 typical 350-450 mb/s both up and down
    Browser
    Edge
    Antivirus
    Defender
    Other Info
    TPM 2.0, 2xUSB4 thunderbolt, 1xUsb3 (usb a), 1xUsb-c, hdmi out, 3.5 mm audio out/in combo, ASUS backlit trackpad (inc. switchable number pad)

    Macrium Reflect Home V8
    Office 365 Family (6 users each 1TB onedrive space)
    Hyper-V (a vm runs almost as fast as my older laptop)
My laptop has bitlocker turned on and I dont need to turn it off when it gets bios updates. It updates the bios like normal and nothing happens. no prompt for a key or anything.

Seems to vary on computer manufacturer. I noticed when bios updates are deployed through windows optional update it just works.
 

My Computers

System One System Two

  • OS
    Windows 11 Pro
    Computer type
    PC/Desktop
    Manufacturer/Model
    Custom Built
    CPU
    Ryzen 7 5700 X3D
    Motherboard
    MSI MPG B550 GAMING PLUS
    Memory
    64 GB DDR4 3600mhz Gskill Ripjaws V
    Graphics Card(s)
    RTX 4070 Super , 12GB VRAM Asus EVO Overclock
    Monitor(s) Displays
    Gigabyte M27Q (rev. 2.0) 2560 x 1440 @ 170hz HDR
    Hard Drives
    2TB Samsung nvme ssd
    2TB XPG nvme ssd
    PSU
    CORSAIR RMx SHIFT Series™ RM750x 80 PLUS Gold Fully Modular ATX Power Supply
    Case
    CORSAIR 3500X ARGB Mid-Tower ATX PC Case – Black
    Cooling
    ID-COOLING FROSTFLOW X 240 CPU Water Cooler
    Internet Speed
    900mbps DOWN, 100mbps UP
  • Operating System
    Chrome OS
    Computer type
    Laptop
    Manufacturer/Model
    HP Chromebook
    CPU
    Intel Pentium Quad Core
    Memory
    4GB LPDDR4
    Monitor(s) Displays
    14 Inch HD SVA anti glare micro edge display
    Hard Drives
    64 GB emmc
My laptop has bitlocker turned on and I dont need to turn it off when it gets bios updates. It updates the bios like normal and nothing happens. no prompt for a key or anything.

Seems to vary on computer manufacturer. I noticed when bios updates are deployed through windows optional update it just works.
Same here with a Dell.

But good info to be aware in this thread.
 

My Computer

System One

  • OS
    Win11 Ver 24H2 26100.2033
    Computer type
    Laptop
    Manufacturer/Model
    Dell
    CPU
    Intel i5
    Memory
    8gb
    Screen Resolution
    1920x1080
    Hard Drives
    256gb
    Browser
    Firefox
    Antivirus
    Windows Defender

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    Acer Swift Edge SFA16-41
    CPU
    AMD Ryzen 5 6600U

My Computer

System One

  • OS
    Windows 11
    Computer type
    Laptop
    Manufacturer/Model
    Acer Swift Edge SFA16-41
    CPU
    AMD Ryzen 5 6600U
There are so many tweaks and changes that can be made both in settings, group policy and/or regedit. I suggest you make yourself familiar with the tutorial index. It is listed in alphabetical order. It gives how-tos for just about everything 11 related.

Here is the same index but where you can select by category in right hand pane. The tutorial index is searchable as well. Tutorials

I consider my most valuable tweak to be getting rid of that darned new "select more options" right click context menu that drives me nuts. This gives back the context menu we've always known.

 

My Computers

System One System Two

  • OS
    Windows 11 Pro 24H2 26100.4061
    Computer type
    PC/Desktop
    Manufacturer/Model
    Dell Optiplex 7080
    CPU
    i9-10900 10 core 20 threads
    Motherboard
    DELL 0J37VM
    Memory
    32 gb
    Graphics Card(s)
    none-Intel UHD Graphics 630
    Sound Card
    Integrated Realtek
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    1tb Solidigm m.2 nvme+256gb SKHynix m.2 nvme /External drives 512gb Samsung m.2 sata+1tb Kingston m2.nvme+ 4gb Solidigm nvme
    PSU
    500w
    Case
    MT
    Cooling
    Dell Premium
    Keyboard
    Logitech wired
    Mouse
    Logitech wireless
    Internet Speed
    so slow I'm too embarrassed to tell
    Browser
    #1 Edge #2 Firefox
    Antivirus
    Defender+MWB Premium
  • Operating System
    Windows 11 Pro 24H2 26100.4061
    Computer type
    PC/Desktop
    Manufacturer/Model
    Beelink Mini PC SER5
    CPU
    AMD Ryzen 7 6800U
    Memory
    32 gb
    Graphics card(s)
    integrated
    Sound Card
    integrated
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    1TB Crucial nvme
    Mouse
    Logitech wireless
    Keyboard
    Logitech wired
    Internet Speed
    still too embarrassed to tell
    Browser
    Firefox
    Antivirus
    Defender
    Other Info
    System 3 is non compliant Dell 9020 i7-4770/24gb ram Win11 PRO 26100.4061

My Computer

System One

  • OS
    Windows 11 Pro
    Computer type
    PC/Desktop
    Manufacturer/Model
    Self build
    CPU
    Core i7-13700K
    Motherboard
    Asus TUF Gaming Plus WiFi Z790
    Memory
    64 GB Kingston Fury Beast DDR5
    Graphics Card(s)
    Gigabyte GeForce RTX 2060 Super Gaming OC 8G
    Sound Card
    Realtek S1200A
    Monitor(s) Displays
    Viewsonic VP2770
    Screen Resolution
    2560 x 1440
    Hard Drives
    Kingston KC3000 2TB NVME SSD & SATA HDDs & SSD
    PSU
    EVGA SuperNova G2 850W
    Case
    Nanoxia Deep Silence 1
    Cooling
    Noctua NH-D14
    Keyboard
    Microsoft Digital Media Pro
    Mouse
    Logitech Wireless
    Internet Speed
    50 Mb / s
    Browser
    Chrome
    Antivirus
    Defender
Back
Top Bottom