we have long regarded the TPM initiative as evil, pure and simple. So lets play with it.
Right now, when we load windows it shows a red screen. SO we booted to the UEFI setup manager and enabled the TPM chip. Back in windows we see
lets clear the TPM:
This restarts the machine, booting to UEFI having had pre-selected the option to clear the TPM. This requires hitting F12 (which doesn’t seem to work on the tablet’s peripheral keyboard)
so we do it all again, figuring that we will use the on- screen keyboard (which works!).
So now we have a TPM, working in the latest mode (even less assured than the previous one, no doubt)
So, now we turn on bitlocker (of the C drive), and get the wonderful option to save the recovery keys in the cloud (where FBI is trawling for them)
on a reboot we see: