Windows 10: Reasons for failed automatic device encryption: Un-allowed DMA capable Solved

Page 2 of 2 FirstFirst 12
  1.    21 Oct 2017 #11

    Well MS rep was wrong this error is normal for a TPM 1.2 model for anyone wanting more info on this error check this out. so if you got this error Device Encryption Support Reasons for failed automatic device encryption: PCR7 binding is not supported, Hardware Security Test Interface failed and device is not InstantGo, Un-allowed DMA capable bus/device(s) detected, Disabled by policy, make sure you have a TPM 2.0 model and not a TPM 1.2 as the error is related to your TPM chip not beeing compatible see chart below. This is something new according to the page would explain why it use to be supported and is now not according to the page the changed it to TPM 2.0 going forward but kept some of the stuff compatible for older systems all new system will need TPM 2.0 is what i read and understand. Hope this helps others god bless all.

    taken from TPM recommendations (Windows 10) | Microsoft Docs
    TPM and Windows Features

    The following table defines which Windows features require TPM support.
    Windows Features TPM Required Supports TPM 1.2 Supports TPM 2.0 Details
    Measured Boot Yes Yes Yes Measured Boot requires TPM 1.2 or 2.0 and UEFI Secure Boot
    BitLocker Yes Yes Yes TPM 1.2 or 2.0 is required
    Device Encryption Yes N/A Yes Device Encryption requires InstantGo/Connected Standby certification, which requires TPM 2.0.
    Device Guard No Yes Yes
    Credential Guard No Yes Yes Windows 10, version 1507 (End of Life as of May 2017) only supported TPM 2.0 for Credential Guard. Beginning with Windows 10, version 1511, TPM 1.2 and 2.0 are supported.
    Device Health Attestation Yes Yes Yes
    Windows Hello/Windows Hello for Business No Yes Yes Azure AD join supports both versions of TPM, but requires TPM with keyed-hash message authentication code (HMAC) and Endorsement Key (EK) certificate for key attestation support.
    UEFI Secure Boot No Yes Yes
    TPM Platform Crypto Provider Key Storage Provider Yes Yes Yes
    Virtual Smart Card Yes Yes Yes
    Certificate storage No Yes Yes TPM is only required when the certificate is stored in the TPM.

      My ComputerSystem Spec

  2. Posts : 1,497
    Windows 10 Pro (32-bit) 16299.15
       25 Nov 2017 #12

    Tonyb said: View Post
    guys facing same issue as well have this error in system info and my secure boot is now disabled and stuff any way to fix ?? called ms they just point me to device manufacture , no help at all, the article looks to be removed ??
    Just to update an old thread - that article seems to be back at

    I don't know if it had all the same information as before?

    This time I'm right-clicking the download option bottom-left to keep a PDF copy!
      My ComputerSystem Spec

  3.    25 Nov 2017 #13

    Thanks much after reading this i understand why :)
      My ComputerSystem Spec

Page 2 of 2 FirstFirst 12

Related Threads
Bitlocker Device Encryption enabled after imaging in AntiVirus, Firewalls and System Security
I am trying to create a Windows 10 image for my organization, and cannot figure out one particular issue with Bitlocker. It seems that after I sysprep, and throw the image on a new computer, it then has BitLocker partially enabled. What I mean is...
Hello, ok so after recently doing a clean install of windows 10(please don't get me started on that mess). my system has been plagued by random usb drops. it's where everything connected via USB suddenly disconnects then reconnects out of the blue....
Hi, all: 1) Does setting Windows Updates to "notify for download and notify for install" via GP edit also disable Device Driver automatic installation? 2) Or does disabling automatic device driver installation need to be configured separately?...
Hello. Suddenly I was enable device encryption. Then I forget it . Few days later , I got some problem such as photo ,snapshot couldn't save , couldn't delete anything from SD card. I downloaded some important document file after few min I can't...
Does Device Encryption Work on Windows 10 Mobile in AntiVirus, Firewalls and System Security
Looking at the Bitlocker/Device Encryption Recovery Keys section on OneDrive, it doesn't show any Windows 10 Mobile recovery keys there despite 'Device Encryption' being switched on. On the actual device itself, it also doesn't show as encrypted...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 06:43.
Find Us