ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Encryption using the TPM Option is "Grayed Out" Within the PGP Disk Assistant


Article ID: 157050


Updated On:


Symantec Products


Even after activating the Trusted Platform Module (TPM) in the computer BIOS and configuring it with the software provided by manufacturer installed on the system, the user is not able to use TPM authentication for PGP Whole Disk Encryption (PGP WDE).  The option shows grayed out when trying to select it from the "Two Factor Authentication" screen.



There are two possible causes for this issue:


1) There are only a few models that are currently supported with TPM (see the article

2) You are trying to use TPM with Windows 7.  PGP WDE only supports TPM on Windows XP and the supported hardware list.


Note: The feature to encrypt to a TPM has been discontinued and will not be further developed. The option to encrypt to a TPM will be removed in one of the future releases.



Unless you are running both a computer on the supported hardware list on Windows XP, you will need to look into alternate methods for TPM authentication. 


Applies To

PGP Desktop 10.2.0 and newer (Managed and standalone)