Solved Here we go again - it's Patch Tuesday (Apr 14, 2026)

hsehestedt said:

I would be curious to know if something you installed is allowing the updates to be skipped for that long a period of time

Click to expand...

Curiosity is killing me. What will get broken this time?

Click to expand...

Windows 11 April 2026 Update KB5083769 Is Triggering BitLocker Recovery Screens on Some PCs - gHacks Tech News

Microsoft has confirmed the April 2026 Windows 11 update is forcing some devices into BitLocker recovery mode due to a specific TPM validation policy configuration.

www.ghacks.net

fishingfool said:

Funny you should ask.

Windows 11 April 2026 Update KB5083769 Is Triggering BitLocker Recovery Screens on Some PCs - gHacks Tech News

Microsoft has confirmed the April 2026 Windows 11 update is forcing some devices into BitLocker recovery mode due to a specific TPM validation policy configuration.

www.ghacks.net

Click to expand...

This issue only affects a limited number of systems in which ALL of the following conditions are true. These conditions are unlikely to be found on personal devices not managed by IT departments.

1. BitLocker is enabled on the OS drive.
2. The Group Policy "Configure TPM platform validation profile for native UEFI firmware configurations" is configured, and PCR7 is included in the validation profile (or the equivalent registry key is set manually).
3. System Information (msinfo32.exe) reports Secure Boot State PCR7 Binding as "Not Possible".
4. The Windows UEFI CA 2023 certificate is present in the device’s Secure Boot Signature Database (DB), making the device eligible for the 2023‑signed Windows Boot Manager to be made the default.
5. The device is not already running the 2023-signed Windows Boot Manager.

Click to expand...