I am trying to install FreeBSD 15

Rock · Wednesday at 9:23 PM

unitrunker · 2026-01-29T00:19:13+0000

I am guessing you need to set "TPM State" to disabled on the "Security" menu and then set "Secure Boot" to disabled on the "Boot" menu.

How many drives are attached? Can you disconnect all of them?

rcbsdpge · 2026-01-29T13:01:33+0000

Can we design our own version of TPM or does something like this already exist at base system

Edit. tpm(4)

Rock · 2026-01-29T15:15:14+0000

rcbsdpge said:
Can we design our own version of TPM or does something like this already exist at base system

Edit. tpm(4)

Maybe, The UEFI menus asking for bitlocked number do not explain but print that it cannot use the HD that is encrypted. It is just the HD with FreeBSD 14.1. Encrypted?

Erichans · 2026-01-29T18:28:23+0000

Rock said:
HP MO1-Fxxx series desktop

Can you tell what exact type number it is? And its CPU?

unitrunker · 2026-01-29T18:35:38+0000

This is getting off-topic from the OP's problem.

The point of TPM is two-fold. An encrypted drive isn't necessary.

The TPM needs to verify the boot code by checking it's signature. The goal is some assurance of no tampering. The second is for the boot code to verify that it was indeed launched from a trusted platform eg. TPM. In other words, someone did not yank the drive from the machine and attempt to boot it on another.

To dumb this down ... TPM != bitllocker.

TPM is a bit of a chicken-and-egg conundrum. I'd like to load my own keys into TPM so I can sign my drive's boot code. But if I can load my own keys, someone else might do the same using their keys and altered boot code.

Rock · 2026-01-30T02:01:26+0000

Erichans said:
Can you tell what exact type number it is? And its CPU?

CPU is AMD Ryzen 5. The PC is HP M01-F3224. Doing a search for HP M01 will show data, not exactly the data for my PC but a production first.

I can do nothing and use my PC as before except that its first image is not the one asking for my login code, like it did before my taking out the M.2 card and later installing it back.

Rock · 2026-01-30T04:23:12+0000

unitrunker said:
I am guessing you need to set "TPM State" to disabled on the "Security" menu and then set "Secure Boot" to disabled on the "Boot" menu.

How many drives are attached? Can you disconnect all of them?

Yes. The FreeBSD HD is the only one inside the PC. It is a Western Digital, (I do not count the M.2) and I can disconnect the cables. Then I will go to the UEFI, do the process, reboot, enter the bitlocker #, see what surprises happen before the usb memory with FreeBSD 15 boots.