How to Enable TPM 2.0 and Secure Boot on ASRock

Published by Nyau Wai Hoe - Updated on

Turning on TPM 2.0 (Trusted Platform Module) and Secure Boot on an ASRock motherboard is a smart move, especially for gamers and folks who really care about keeping their computer safe. TPM 2.0 keeps your sensitive info safe with some serious hardware security. Secure Boot steps in to stop any sneaky, untrusted software from starting up on your computer. With big games like Riot’s Valorant needing these features to even run, it’s clear they’re pretty important for a secure and smooth gaming experience.

Also see: Enabling TPM 2.0 and Secure Boot on Gigabyte Mobo

How to Enable TPM 2.0 and Secure Boot on ASRock

Understanding BIOS and UEFI firmware

Before we jump into turning on TPM 2.0 and Secure Boot, let’s get the lowdown on BIOS and UEFI firmware. ASRock motherboards, and lots of other modern ones, use UEFI firmware. It’s a newer, fancier version of the old BIOS firmware.

UEFI is user-friendly and supports big hard drives and quicker boot times. Plus, it’s got better security with stuff like TPM and Secure Boot. We’ll be diving into UEFI settings to switch these features on. Let’s start with how to get into the UEFI settings on your ASRock motherboard.

Related resource: Can’t find TPM 2.0 and Secure Boot options in BIOS?

Step 1: Accessing the UEFI settings on ASRock motherboard

First up, we need to get into the UEFI (Unified Extensible Firmware Interface). This is where you can change settings for your computer’s hardware. Here’s how:

  1. Start by restarting your computer. As it boots up, you’ll enter the UEFI settings by pressing a certain key.
  2. Keep an eye on the screen as it starts. Most ASRock motherboards tell you to press the F2 or Del key to get into the UEFI settings. Do this before your operating system kicks in. Missed it? Just restart and try again.
  3. Once you’re in, you’ll see a graphical interface that’s way different from the old-school BIOS screens. Use your keyboard (and sometimes your mouse) to explore the menus.Access to ASRock motherboard BIOS UEFI

UEFI might look a bit different depending on your ASRock motherboard model and firmware version. If you’re stuck, check your motherboard’s manual for help. And be careful with changes in BIOS or UEFI—it can really affect how your computer works.

Pro tip: How to Allocate More RAM to a Game in Windows 11 or 10

Step 2: Enabling TPM 2.0 on ASRock motherboard

Next, let’s turn on TPM 2.0. TPM is a hardware-based security feature that’s great for secure boot, disk encryption, and more. Here’s what to do:

  1. Go to the Advanced tab in the UEFI interface. This is usually where you find settings to tweak.
  2. Find the CPU Configuration settings. If you’re lost, your motherboard’s manual can help.ASRock motherboard UEFI CPU Configuration TPM 2.0
  3. Look for an option like AMD fTPM, TPM 2.0, TPM State, or Intel PTT. Choose this and switch it to “AMD CPU fTPM” or just “Enabled“.How to Enable TPM 2.0 on ASRock motherboard
  4. Don’t forget to save your changes. This is usually done by pressing F10 or going to the Exit tab and choosing Save Changes and Exit. Your computer will restart with TPM turned on.

Remember, turning on TPM might need a firmware update, especially on older motherboards. If TPM 2.0 doesn’t work on your ASRock motherboard, look for a firmware update from the manufacturer.

Useful guide: Using Onboard Graphics And Graphics Card Simultaneously

Step 3: Enabling Secure Boot on ASRock motherboard

After TPM 2.0 is on, we’ll activate Secure Boot. This UEFI feature makes sure your PC only starts with firmware the manufacturer trusts, blocking bad software. Here’s how:

  1. In UEFI settings, find the Security tab. That’s where Secure Boot settings live.
  2. Look for the Secure Boot setting and select it.ASRock motherboard BIOS Secure Boot option
  3. First, change “Secure Boot Mode” to “Standard“.ASRock Secure Boot option cannot be enabled
  4. Then, switch Secure Boot from “Disabled” to “Enabled“. Sometimes, you might need to set the OS Type to Windows UEFI mode to get it fully working.How to Enable Secure Boot on ASRock motherboard
  5. Again, save your changes by pressing F10 or hitting Save Changes and Exit under the Exit tab. Your PC will restart with Secure Boot on.Save TPM 2.0 and Secure Boot settings on ASRock

Heads up: Secure Boot might mess with booting non-UEFI-compliant operating systems or unrecognized bootloaders. If you’ve got a dual-boot setup or an older OS, make sure they’re compatible before turning Secure Boot on.

Linked issue: Windows 11 Not Activated After BIOS Update

Some common issues you might encounter

Updating UEFI firmware

If you don’t see TPM 2.0 or Secure Boot options, your motherboard’s firmware might need an update. Check out the ASRock website for the latest UEFI firmware. This can fix lots of issues.

Compatibility mode

Some setups might need you to switch from Legacy to UEFI boot mode to turn Secure Boot on. You can usually find this change under the Boot tab.

Operating system issues

If your OS doesn’t start after these settings, it might not work with Secure Boot or UEFI mode. Windows 10 and newer should be fine, but older versions or some Linux distros might have trouble.

Resetting UEFI settings

Can’t boot after changes? Most motherboards let you reset UEFI settings to default with a key combo. Check your manual for how to do this.

Might be useful: How to Clear CMOS without Removing Battery or Jumper Cap

Consult the manual

Every motherboard model has its own UEFI layout and options. For specific advice, your motherboard’s manual is your best friend.

Turning on TPM and Secure Boot is a big deal for your computer’s security. If things aren’t going smoothly, it might be time to call in a pro or check in with ASRock’s support folks.

Summing up

So, getting TPM 2.0 and Secure Boot going on your ASRock motherboard is all about adding an extra layer of security, kinda like a new lock on your door. It’s super important for games like “Valorant” that need these features to run right. Just think of it as a simple but effective way to keep your computer running only the software it should, protecting you from the bad stuff.

Nyau Wai Hoe
Nyau Wai Hoe is the Founder and Chief Editor of With a degree in software engineering and over 12 years of experience in the tech support industry, Nyau has established himself as an expert in the field, with a primary focus on the Microsoft Windows operating system. As a tech enthusiast, he loves exploring new technologies and leveraging them to solve real-life problems.

Share via
Copy link