TPM for asrock romed8-2t with EPYC 7282

General
1

Greeting,

I have been trying to enable TPM in the BIOS, but I can’t seems to be able to find the right location in the BIOS to do it, can anyone help.

Note: the BIOS version I have is P3.90

2

Enabling the Built-in AMD fTPM

  1. Turn on or restart the server.

  2. Press F2 or Del during the boot process (POST) to enter the BIOS Setup Utility.

  3. Navigate to the Advanced tab at the top of the screen.

  4. Select CPU Configuration and press Enter.

  5. Scroll down to find the AMD fTPM switch.

  6. Change the setting from Disabled to Enabled.

  7. Press F10 to Save and Exit. The system will reboot with the firmware TPM active.

Enabling a Physical Hardware TPM Module

Note: Only follow these steps if you have explicitly purchased and installed a physical TPM 2.0 module onto the motherboard’s TPM_BIOS_PH1 header.

  1. Turn on or restart the server.

  2. Press F2 or Del during boot to enter the BIOS Setup Utility.

  3. Navigate to the Advanced tab.

  4. Select Trusted Computing and press Enter.

  5. Locate the Security Device Support option.

  6. Change the setting to Enable.

  7. Press F10 to Save and Exit.

After rebooting, you can verify the TPM status within your operating system (for example, by running tpm.msc in Windows or checking /sys/class/tpm/ in Linux).

3

thanks for the info, but under Advanced->CPU Configuration I can’t see the AMD fTPM.

The only thing that I see there is

SVM Mode

and

Node 0 Information

That is for the first method

since I don’t have a physical TPM module

the second method didn’t work as well.

Now, would you know what model of TPM module should I get for that mother board?

1 Like
4

I’ll let someone else reply since I don’t actually have the board. There are some other locations suggested where it might be in the BIOS, but I won’t send you on a wild goose chase if you think you’ve thoroughly checked.

What is the end goal?

  • Enable Windows 11 compatibility?
  • Use BitLocker?
  • Pass TPM into a VM?
  • Enable measured boot / Secure Boot?
5

I’m running Unraid on the server and now that Unraid allows internal boot,I want to transfer the OS from the USB flash drive to a mirror NVME, which I did but in order to remove the USB flash drive out of the server I need to transfer the license key to a TPM

6

I have a ROMED8-2T, and I only see options for hardware TPM in the BIOS. Looks like SPI is the newer standard so that would probably be the route to go.

1 Like
7

yes, I agree with you. I tend to believe that the only option that I have is to put a TPM module to be able to transfer the license key to it.