Privacy and Security Check Device Encryption Support in Windows 11


BitLocker_OS_banner.png

This tutorial will show you how to check if your PC supports using Device Encryption in Windows 11.

Device encryption is a Windows feature that enables BitLocker encryption automatically for the Operating System drive and fixed drives. It’s particularly beneficial for everyday users who want to ensure their personal information is safe without having to manage complex security settings.

When you first sign in or set up a device with a Microsoft account, or work or school account, Device Encryption is turned on and a recovery key is attached to that account. If you're using a local account, Device Encryption isn't turned on automatically.

Unlike BitLocker Drive Encryption, which is available on Windows Pro, Enterprise, or Education editions, Device Encryption is available on a wider range of devices, including those running Windows Home.

Device encryption is available and turned on by default on devices (ex: tablet or 2-in1) that support Modern Standby and running any Windows 11 edition. If you want to use standard BitLocker encryption instead, it's only available on supported devices running Windows 11 Pro, Enterprise, or Education. Some devices have both types of encryption.

References:

Device Encryption in Windows - Microsoft Support

Learn about BitLocker Device Encryption in Windows and how to enable it.
support.microsoft.com support.microsoft.com
learn.microsoft.com

BitLocker overview

Learn about BitLocker practical applications and requirements.
learn.microsoft.com
learn.microsoft.com

BitLocker drive encryption in Windows 11 for OEMs

OEMs can configure hardware to support Windows 11 automatic device encryption.
learn.microsoft.com

You must be signed in as an administrator to check Device Encryption support.



Contents

  • Option One: Device Encryption Support in System Information
  • Option Two: Device Encryption Support in Settings




Option Two

Device Encryption Support in System Information


1 Open Windows Search (Win+S).

2 Type msinfo32 into the Search Box, and click/tap on Run as administrator for System Information. (see screenshot below)

msinfo32_run_as_administrator.jpg

3 In the right pane of System Summary, look for Device Encryption Support or Automatic Device Encryption Support. (see screenshots below)

4 If the "value" says Meets prerequisites, then Device Encryption is available on your device. Otherwise, is will say why Device Encryption is not supported (reasons for failed).

The value describes the support status of Device Encryption:
  • Meets prerequisites: Device Encryption is available on your device
  • TPM is not usable: Device Encryption is not available because your device doesn't have a Trusted Platform Module (TPM), or the TPM isn't enabled in the BIOS or in the UEFI
  • WinRE is not configured: Device Encryption is not available because your device doesn't have Windows Recovery Environment configured
  • PCR7 binding is not supported: Device Encryption is not available because Secure Boot is disabled in the BIOS/UEFI, or you have peripherals connected to your device during boot (like specialized network interfaces, docking stations, or external graphic card)
Device_Encryption_support-System_Information.png

Device_Encryption_support-System_Information-2.png





Option Two

Device Encryption Support in Settings


1 Open Settings (Win+I).

2 Click/tap on Privacy & security on the left side. (see screenshots below)

3 If you see Device encryption on the right side available to open, then your device supports turning on or off Device Encryption for the OS drive.

Open Device encryption settings

Device_Encryption_support-Settings-1.png
Device_Encryption_support-Settings-2.png



That's it,
Shawn Brink


Related Tutorials

 
Last edited:
Click to expand...
This is what I get in System Information.
Device Encryption Support: Reasons for failed automatic device encryption: PCR7 binding is not supported, Hardware Security Test Interface failed and the device is not Modern Standby, Un-allowed DMA capable bus/device(s) detected.
Click to expand...
 

My Computers

System One System Two

  • OS
    Windows 11 Pro
    Computer type
    PC/Desktop
    Manufacturer/Model
    Stigg's Build
    CPU
    Intel Core i9-10900X
    Motherboard
    GIGABYTE X299X DESIGNARE 10G
    Memory
    Corsair 64 GB (4 x 16 GB) CMW64GX4M4C3000C15 Vengeance RGB Pro 3000Mhz DDR4
    Graphics Card(s)
    GIGABYTE GeForce GTX 1660 Super Mini ITX 6 GB OC
    Sound Card
    Realtek ALC1220
    Monitor(s) Displays
    Samsung 27" FHD LED FreeSync Gaming Monitor (LS27F350FHEXXY)
    Screen Resolution
    1920 x 1080
    Hard Drives
    Samsung 970 Pro Series 1TB M.2 2280 NVMe SSD
    Western Digital Red Pro WD8003FFBX-68B9AN0 8 TB, 7200 RPM, SATA-III
    Western Digital Red Pro WD8003FFBX-68B9AN0 8 TB, 7200 RPM, SATA-III
    PSU
    Corsair HX1200 1200W 80 Plus Platinum
    Case
    Fractal Design Define 7 Black Solid Case
    Cooling
    Noctua NH-D15 Chromax Black
    Keyboard
    Razer Ornata V2
    Mouse
    Razer DeathAdder Essential
    Internet Speed
    FTTN 100Mbps / 40Mbps
    Browser
    Mozilla Firefox
    Antivirus
    N/A
    Other Info
    Logitech BRIO 4k Ultra HD USB-C Webcam
  • Operating System
    Windows 10 Pro
    Computer type
    Laptop
    Manufacturer/Model
    ASUS ROG Zephyrus M GM501GS
    CPU
    Core i7-8750H
    Motherboard
    Zephyrus M GM501GS
    Memory
    SK Hynix 32 GB (2 x 16 GB) HMA82GS6CJR8N-VK 16 GB DDR4-2666 DDR4 SDRAM
    Graphics card(s)
    NVIDIA GeForce GTX 1070
    Sound Card
    Realtek ALC294
    Monitor(s) Displays
    AU Optronics B156HAN07.1 [15.6" LCD]
    Screen Resolution
    1920 x 1080
    Hard Drives
    Samsung MZVKW512HMJP-00000 512 GB, PCI-E 3.0 x4
    Samsung SSD 860 QVO 4TB 4 TB, SATA-III
    PSU
    N/A
    Case
    N/A
    Cooling
    N/A
    Mouse
    Razer DeathAdder Essential
    Keyboard
    PC/AT Enhanced PS2 Keyboard (101/102-Key)
    Internet Speed
    FTTN 100Mbps / 40Mbps
    Browser
    Mozilla Firefox
    Antivirus
    N/A
    Other Info
    USB2.0 HD UVC Webcam
Stigg said:
This is what I get in System Information.
Click to expand...
Hello mate, :alien:

The main reason is no Modern Standby support. You have the Pro edition, so you should have the full BitLocker available instead.
 

My Computers

System One System Two

  • OS
    Windows 11 Pro for Workstations
    Computer type
    PC/Desktop
    Manufacturer/Model
    Custom self build
    CPU
    Intel i7-8700K 5 GHz
    Motherboard
    ASUS ROG Maximus XI Formula Z390
    Memory
    64 GB (4x16GB) G.SKILL TridentZ RGB DDR4 3600 MHz (F4-3600C18D-32GTZR)
    Graphics Card(s)
    ASUS ROG-STRIX-GTX1080TI-O11G-GAMING (11GB GDDR5X)
    Sound Card
    Integrated Digital Audio (S/PDIF)
    Monitor(s) Displays
    2 x Samsung Odyssey G75 27"
    Screen Resolution
    2560x1440
    Hard Drives
    1TB Samsung 990 PRO M.2,
    4TB Samsung 990 PRO M.2,
    8TB WD MyCloudEX2Ultra NAS
    PSU
    Seasonic Prime Titanium 850W
    Case
    Thermaltake Core P3 wall mounted
    Cooling
    Corsair Hydro H115i
    Keyboard
    Logitech wireless K800
    Mouse
    Logitech MX Master 3
    Internet Speed
    1 Gbps Download and 35 Mbps Upload
    Browser
    Google Chrome
    Antivirus
    Microsoft Defender and Malwarebytes Premium
    Other Info
    Logitech Z625 speaker system,
    Logitech BRIO 4K Pro webcam,
    HP Color LaserJet Pro MFP M477fdn,
    CyberPower CP1500PFCLCD
    Galaxy S23 Plus phone
  • Operating System
    Windows 11 Pro
    Computer type
    Laptop
    Manufacturer/Model
    Surface Laptop 7 Copilot+ PC
    CPU
    Snapdragon X Elite (12 core) 3.42 GHz
    Memory
    16 GB LPDDR5x-7467 MHz
    Monitor(s) Displays
    15" HDR
    Screen Resolution
    2496 x 1664
    Hard Drives
    1 TB SSD
    Internet Speed
    Wi-Fi 7 and Bluetooth 5.4
    Browser
    Chrome and Edge
    Antivirus
    Windows Defender
Brink said:
Hello mate, :alien:

The main reason is no Modern Standby support. You have the Pro edition, so you should have the full BitLocker available instead.
Click to expand...
Thanks for the clarification, Shawn.
Yes, I I've seen a BitLocker option in Control Panel. It's disabled, and I don't have any plans to enable it any time soon.
 
Last edited:

My Computers

System One System Two

  • OS
    Windows 11 Pro
    Computer type
    PC/Desktop
    Manufacturer/Model
    Stigg's Build
    CPU
    Intel Core i9-10900X
    Motherboard
    GIGABYTE X299X DESIGNARE 10G
    Memory
    Corsair 64 GB (4 x 16 GB) CMW64GX4M4C3000C15 Vengeance RGB Pro 3000Mhz DDR4
    Graphics Card(s)
    GIGABYTE GeForce GTX 1660 Super Mini ITX 6 GB OC
    Sound Card
    Realtek ALC1220
    Monitor(s) Displays
    Samsung 27" FHD LED FreeSync Gaming Monitor (LS27F350FHEXXY)
    Screen Resolution
    1920 x 1080
    Hard Drives
    Samsung 970 Pro Series 1TB M.2 2280 NVMe SSD
    Western Digital Red Pro WD8003FFBX-68B9AN0 8 TB, 7200 RPM, SATA-III
    Western Digital Red Pro WD8003FFBX-68B9AN0 8 TB, 7200 RPM, SATA-III
    PSU
    Corsair HX1200 1200W 80 Plus Platinum
    Case
    Fractal Design Define 7 Black Solid Case
    Cooling
    Noctua NH-D15 Chromax Black
    Keyboard
    Razer Ornata V2
    Mouse
    Razer DeathAdder Essential
    Internet Speed
    FTTN 100Mbps / 40Mbps
    Browser
    Mozilla Firefox
    Antivirus
    N/A
    Other Info
    Logitech BRIO 4k Ultra HD USB-C Webcam
  • Operating System
    Windows 10 Pro
    Computer type
    Laptop
    Manufacturer/Model
    ASUS ROG Zephyrus M GM501GS
    CPU
    Core i7-8750H
    Motherboard
    Zephyrus M GM501GS
    Memory
    SK Hynix 32 GB (2 x 16 GB) HMA82GS6CJR8N-VK 16 GB DDR4-2666 DDR4 SDRAM
    Graphics card(s)
    NVIDIA GeForce GTX 1070
    Sound Card
    Realtek ALC294
    Monitor(s) Displays
    AU Optronics B156HAN07.1 [15.6" LCD]
    Screen Resolution
    1920 x 1080
    Hard Drives
    Samsung MZVKW512HMJP-00000 512 GB, PCI-E 3.0 x4
    Samsung SSD 860 QVO 4TB 4 TB, SATA-III
    PSU
    N/A
    Case
    N/A
    Cooling
    N/A
    Mouse
    Razer DeathAdder Essential
    Keyboard
    PC/AT Enhanced PS2 Keyboard (101/102-Key)
    Internet Speed
    FTTN 100Mbps / 40Mbps
    Browser
    Mozilla Firefox
    Antivirus
    N/A
    Other Info
    USB2.0 HD UVC Webcam
You must log in or register to reply here.

Similar Windows 11 Tutorials

  • Article Article
Phone Enable or Disable Mobile Device Badges in Start Menu in Windows 11
Replies
0
Views
746
Brink
Brink
  • Article Article
Phone Enable or Disable Show Recent Mobile Device Content in Start Menu in Windows 11
Replies
0
Views
800
Brink
Brink
  • Article Article
Windows Update Check when Windows Update was Last Checked in Windows 11
Replies
2
Views
2K
Brink
Brink
  • Article Article
Phone Enable or Disable Show Phone Name in Windows Share in Windows 11
Replies
0
Views
2K
Brink
Brink
  • Article Article
Devices Enable or Disable Bluetooth LE Audio in Windows 11
Replies
4
Views
4K
cereberus
cereberus
  • Article Article
Privacy and Security Change BitLocker Drive Encryption Method in Windows 11
Replies
7
Views
8K
TraderGary
TraderGary
  • Article Article
Privacy and Security Enable or Disable Filter Sensitive Information on Recall Snapshots in Windows 11
Replies
0
Views
764
Brink
Brink

Latest Support Threads

Latest Tutorials

Back
Top Bottom