[rescue] off-topic but advice needed for the involuntary hardware upgrade for Win 11?

Steve Hatle steve.hatle at gmail.com
Wed Dec 25 20:29:42 EST 2024 

Our beef at our workplace is that we have a number of desktops that have 
the correct TPM, UEFI/Secure Boot, etc. but are 7th Gen CPUs, which fail 
the Win 11 compatibility tests.

We can install 11 OK, and it runs fine with TPM and SecureBoot enabled 
(and some RAM upgrades), but our loss insurance would not cover us if 
there was any kind of breach or ransomware attack that involved these 
"non-compliant" machines.

So we are in the midst of replacing a bunch of machines that don't 
really need replacing due to performance issues, but is necessary for 
liability issues. Win 11 installer does not complain about these 
machines at all during install or updating in our controlled tests.

Upgrading this hardware is probably the right thing to do in the long 
run, but it seems somewhat arbitrary; we would rather let them age out 
for other reasons.

> Lionel Peterson via rescue <mailto:rescue at sunhelp.org>
> December 25, 2024 at 5:32 PM
> I have a couple 'old' Dell T30 servers that had an updatable TPM on 
> the MB. With a simple firmware update the on-board TPM chip was 
> upgraded to 2.0, and Win 11 could be installed without compromise.
>
> I was very surprised to see that, as it breathed new life into those 
> otherwise nice low-end servers...
>
> Ken
>
>
>
> _______________________________________________
> rescue list - http://sunhelp.org/mailman/listinfo/rescue_sunhelp.org
> Mike Spooner via rescue <mailto:rescue at sunhelp.org>
> December 25, 2024 at 5:22 PM
> It's worth pointing out that Microsoft notified all OEMs in January 
> 2016 that from April 2016 onwards (ie 2 years after the TPM 2.0 spec 
> was published), computers would only be able to be shipped with 
> Windows preinstalled if they were TPM-2 capable, although for a couple 
> of years OEMs would be allowed to have it default to disabled in BIOS 
> (but that in all cases it *must* remain enable-able in the BIOS menus).
>
> As always with OEMs, many flouted their contract with Microsoft 
> regarding this. At least *some* of the TPM-requirements-anger should 
> be directed at them. Admittedly, MS might have jumped slightly early, 
> but they had been warning OEMs several times during 2015.
>
> - Mike
>
>
>
>
>
> _______________________________________________
> rescue list - http://sunhelp.org/mailman/listinfo/rescue_sunhelp.org

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://sunhelp.org/pipermail/rescue_sunhelp.org/attachments/20241225/39dbc8e6/attachment.html>

More information about the rescue mailing list