Note: If you are just enabling it to install Windows 11, its is not necessary. Windows 11 just needs PC to be able to run Secure boot, it doesn't enforce it. Valorant is a different story credit to COLGeek for instructions Steps to enable (all AMD-based Gigabyte mobos) Secure Boot. Make sure...
need to make sure your drive is GPT before you swap.
Intel® Platform Trust Technology (Intel® PTT) - Intel® Platform Trust Technology (Intel® PTT) offers the capabilities of discrete TPM 2.0. Intel PTT is a platform functionality for credential storage and key management used by Windows 8* , Windows® 10 and Windows* 11. Intel PTT supports BitLocker* for hard drive encryption and supports all Microsoft requirements for firmware Trusted Platform Module (fTPM) 2.0.
Thanks. There is something wrong. Yesterday things were going well and I expected that Windows 11 would be available today.
Then, I enabled PTT and Secure Boot via disabling CSM. Windows 10 and Health Check said that my system does not satisfy the requirements for Windows 11. Secure boot not supported. I enabled CSM again (PTT and Trusted Computing enabled) and Health Check said my PC satisfies the requirement for the update. Even strange is that after enabling CSM which disables Secure Boot, Health Check said that my PC supports secure boot.
While the requirement to upgrade a Windows 10 device to Windows 11 is only that the PC be Secure Boot capable by having UEFI/BIOS enabled, you may also consider enabling or turning Secure Boot on for better security.
what is needed for win 11 is:
enabled TPM 2.0
secure boot needs to be available, that means bios mode needs to be set as UEFI , boot drive needs to be on GPT
CSM on or off is mainboard specific, basicly if CSM is enabled, storage needs to be in UEFI, that way measured boot will be still running (atleast something, but enough for win11 to pass check)