Windows 10 x64 Build 1803, Bitlocker Enabled after fresh install

ITSysTech
ITSysTech used Ask the Experts™
on
We are running into a strange issue with Windows 10 x64 Build 1803. When we install Windows from scratch and we chose an offline account it shows the C drive with BitLocker Encrypted. I could see this happening if I logged in with a Microsoft account but not with a local account. See Pictures below. What can I do to fix this issue?

BitLocker01.PNGBitLocker02.PNGDell Latitude E5590
Windows 10 x64 Build 1803

Referance From Microsoft's website.
"Note: BitLocker automatic device encryption is enabled only after users sign in with a Microsoft Account or an Azure Active Directory account. BitLocker automatic device encryption is not enabled with local accounts, in which case BitLocker can be manually enabled using the BitLocker Control Panel."
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
IT Support Professional
Commented:
as it says, it's waiting for activation, so it's not really enabled! This also happens if you bios/motherboard have security devices like (trusted platform module) or something like this. check your bios to disable it.
surface-tmp-devicemanager.jpg
Distinguished Expert 2018
Commented:
The observed behavior has nothing to do with a tpm being present or not.
It should, as the author says, not be seen when using local accounts, only.

"Waiting for activation" means, that bitlocker has pre-provisioned the drive, which would be expected, when you use custom installations together with windows deployment. Do you? So your "install from scratch", how does it look like?

We never see that, never ever, and I work with bitlocker for over a decade and with win10 right from the start.
ITSysTechSenior Systems Administrator

Author

Commented:
Here is what I found in the bios.

IMG_1764.JPG
Mcknife, we have tried both installations from scratch and custom installs and we get the same behavior. Dell has no idea why this is happening and this is from their top level engineers.

Thanks
ITSysTechSenior Systems Administrator

Author

Commented:
I turned off TPM and reinstalled Windows and the "Bit Locker Encrypted" is gone. This still makes no sense because on other computers it is enabled and the "Bit Locker Encrypted" does not show up enabled.
ITSysTechSenior Systems Administrator

Author

Commented:
Turning off the TPM worked.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial