Are you receiving the “BitLocker Could Not Be Enabled” error when you try to secure your Windows device? If you are, you don't need to worry about it anymore. In this post, MiniTool Partition Wizard provides the possible reasons and all the potential solutions for this error.

What Is BitLocker?

BitLocker Drive Encryption is a data protection feature that can help users resolve the threat of data theft or exposure. BitLocker and TPM often work together to provide maximum protection to users’ computers.

If you want to enable BitLocker on your PC, your hard disk must be partitioned with at least two drives: a boot drive (which contains the operating system and its support files) and a system drive (which contains the files that are needed to load Windows after the firmware has prepared the system hardware).

Tips:

If the system drive and the boot drive are the same drive, a data drive is needed.

In addition to the above restriction, you also need to satisfy these requirements:

  • The system drive must not be encrypted.
  • The system drive must be at least 350 MB in size.
  • The partition subject to encryption can’t be marked as an active partition.
Tips:

No matter whether with TPM or without TPM, you can enable BitLocker. If TPM is enabled, you can save the BitLocker key into the TPM chip. Without the TPM, you must save the BitLocker key on a removable drive like a USB drive. To know more about the system requirements, you can click here to get it.

How to Turn on BitLocker Without TPM on Windows 10

About the “BitLocker Could Not Be Enabled” Error

However, some people encounter the “BitLocker Could Not Be Enabled” error when they try enabling BitLocker. When the error occurs, they can see an error message window. But different people may encounter different error messages due to the different trigger factors for this error on their PCs. Here are two typical error messages:

Error 1.

The BitLocker encryption key cannot be obtained

Error 2.

The BitLocker encryption key cannot be obtained from the TPM

How to Fix the “BitLocker Could Not Be Enabled” Error?

For Error 1

Method 1. Check Your PC’s Configuration

If your computer doesn’t satisfy the system requirements for enabling BitLocker, you may be unable to enable it. So, you’d better check your computer’s configuration first once you encounter the “BitLocker Could Not Be Enabled” error. Here are the things you need to check:

  • Check if the system drive is encrypted.
  • Check if your disk has been partitioned to at least 2 drives.
  • Check if your system drive is at least 350 MB in size.
  • Check if your partition subject to encryption is marked as an active partition.

If the system drive is encrypted, you need to decrypt it first.

If your disk only has one drive, you can try resolving the “BitLocker Could Not Be Enabled” error by shrinking the existing partition to create a new data partition. However, if you want to enable BitLocker on the C drive, you’d better reinstall Windows and reallocate the partitions.

If your system drive is smaller than 350 MB, you can use MiniTool Partition Wizard’s Extend Partition feature to help you enlarge it. Here’s the guide:

MiniTool Partition Wizard DemoClick to Download100%Clean & Safe

  1. Download and install MiniTool Partition Wizard on your PC. Then launch it.
  2. Select the System Reserved partition, and then click the Extend Partition option on the left panel.
  3. Click the down arrow to select where to take free space from.
  4. Drag the blue block to decide how much space you want to take.
  5. Then click OK to close the Expand Partition window.
  6. Next, click Apply and Yes to execute the changes.

the steps to extend partition

If the partition subject to encryption is marked as an active partition, you need to make it inactive first. You can also use MiniTool Partition Wizard to help you complete that. Here are the detailed steps:

Note:

The partition subject to encryption must not be the system drive. The system partition must be active. Otherwise, the PC won’t boot.

MiniTool Partition Wizard DemoClick to Download100%Clean & Safe

  1. Click the download button to get the MiniTool Partition Wizard package. Click the exe file to install it on your PC.
  2. Then launch it to its main interface.
  3. Select the partition that you need to make inactive.
  4. Select the Set Inactive option from the left panel.
  5. Next, click Apply and Yes to execute the pending operation.

select Set Inactive

Method 2. Check If the USB Has been Recognized

If your BIOS did not correctly enumerate the USB port with the USB drive inserted, you may also encounter the “BitLocker Could Not Be Enabled” error. In this case, you can try these ways to fix this error:

  • Try a different USB port.
  • Try a different USB drive.
  • Check if your PC supports USB at boot time.

Method 3. Update BIOS

If your BIOS has not been updated in a long time, it may not support newer versions of BitLocker. In this case, you may encounter the “BitLocker Could Not Be Enabled” error, too. So, you can try updating your BIOS to get rid of this error.

To update the BIOS, you can refer to these posts:

However, you may lose your data if you encounter a BIOS update failure. So, you’d better back up your disk before you try this fix. To make a backup, you can follow the guide in this post: How to Back up Windows to Safeguard Your Computer? Try MiniTool!

How to Tackle MANUALLY INITIATED CRASH BSOD Error?
How to Tackle MANUALLY INITIATED CRASH BSOD Error?

If you get the MANUALLY INITIATED CRASH BSOD error on your computer, you can read this post to get some useful solutions to get rid of the error.

Read More

For Error 2

Fix 1. Check Your PC’s Configuration and Update BIOS

These solutions also work for Error 2.

Fix 2. Disable BitLocker and Re-Enable It Again

You can also try disabling BitLocker and re-enabling it to fix the “BitLocker Could Not Be Enabled” error. This method works for some people. To disable BitLocker, you can refer to this post: 7 Reliable Ways to Disable BitLocker Windows 10.

Fix 3. Enable the BitLocker Services

Some people report that enabling the BitLocker services helps them fix the “BitLocker Could Not Be Enabled” error successfully. You can also have a try. Here’s how to do it:

Step 1. Press the Windows and R keys simultaneously to open the Run window.

Step 2. Type “services.msc” in the box and press Enter.

Step 3. Scroll down to find the BitLocker Drive Encryption Service entry. Then right-click it and select Properties.

select Properties from the menu

Step 4. Set the Startup type to Automatic, click Start, and then click Apply and OK to save changes.

the steps to enable the BitLocker services

Step 5. Check if the error has been fixed.

Fix 4. Reinstall TPM Drivers

If you encounter the “BitLocker Could Not Be Enabled” error on your PC, you can also try reinstalling TPM drivers to fix this error. Here’s the guide:

  1. Press the Windows and X keys simultaneously, and then select Device Manager from the menu.
  2. Extend the Security devices category, right-click the driver, and select Uninstall device from the menu.
  3. Next, click the Uninstall button in the Uninstall Device
  4. Once done, reboot your computer and check if the error has been resolved.
How to Fix the Palworld Low Level Fatal Error? [Solved]
How to Fix the Palworld Low Level Fatal Error? [Solved]

You don't need to worry if you don’t know how to fix the Palworld Low Level Fatal Error. This post provides a full guide to help you solve this error.

Read More

Fix 5. Clear TPM

Some Dell users report that they fix the “BitLocker Could Not Be Enabled” error successfully by clearing TPM on TPM.MSC. You can also have a try. Before doing that, please make sure you have checked all the boxes of features that are required for BitLocker to be properly enabled. Here’s the tutorial:

Step 1. Make sure you have checked all the boxes of features that are required for BitLocker to be properly enabled.

  1. Make sure you have enabled TPM in the BIOS.
  2. Open the Run window.
  3. Type “tpm.msc” in the box and press Enter.
  4. Then check if TPM is showing as active in the new window.
  5. Open the Run window again, type “gpedit.msc” and press Enter.
  6. In the Local Group Policy Editor window, navigate to Computer Configuration > Administrative Templates > Windows Components > BitLocker Drive Encryption> Operating System Drives.
  7. Then double-click the Require additional authentication at startup entry, set it to Enabled, and check the box next to “Allow BitLocker without a compatible TPM”.

Step 2. Clear TPM.

  1. Open the Run window again, type “tpm.msc” in the box, and press Enter.
  2. Next, click Clear TPM on the right panel.
  3. Once done, try enabling BitLocker again and check if the error has been resolved.

Fix 6. Convert Your Partition to GPT

TPM 2.0 is not supported in the Legacy and CSM modes of the BIOS. To make the TPM 2.0 work well, you need to set the BIOS mode to native UEFI only, disable Legacy and CSM options, and enable the secure boot feature for adding security.

To complete that, you can try converting your partition to GPT and then setting the BIOS mode to native UEFI only. Here are the detailed steps below:

Tips:

Before you convert your system disk to GPT, you’d better make a backup of your whole system disk in case of any accidents after the conversion.

Step 1. Click the button below to download and install MiniTool Partition on your computer.  Then launch the app to its main interface.

MiniTool Partition Wizard DemoClick to Download100%Clean & Safe

Step 2. Choose the disk that you want to convert, and then select Convert MBR Disk to GPT Disk from the left panel.

Tips:

You can also right-click the disk that you want to convert from MBR to GPT, and then select the Convert MBR Disk to GPT Disk feature from the menu.

select Convert MBR Disk to GPT Disk from the left panel

Step 3. Click OK in the warning window.

Note:

After you click OK in the first warning window, you may see a second warning window. The second window is to ask you to make sure your Windows on the disk is the 64-bit version. If your version of Windows is the 64-bit version, click Yes to continue.

click OK button in the Warning window

Step 4. Click Apply to execute all the pending changes. Then wait for the process to complete.

Step 5. After that, click the OK button at the end of the process.

Step 6. Boot your computer to BIOS menu and switch the BIOS mode as UEFI. Reboot to normal Windows environment and try enable BitLocker again to check if the error is fixed.

This post shows a full guide to help you fix the “BitLocker Could Not Be Enabled” error. If you encounter the same error, you can follow the guide in this post to fix it on your own.Click to Tweet

Asus ROG Ally Not Recognizing SD Card: Try These 9 Fixes!
Asus ROG Ally Not Recognizing SD Card: Try These 9 Fixes!

If you are the one who encountered the “Asus ROG Ally not recognizing SD card” issue, you can read this post to get some useful solutions.

Read More

Bottom Line

This post provides the possible reasons that can cause the “BitLocker Could Not Be Enabled” error and 8 fixes to help you fix it. You can try these fixes on your own to fix this error.

Do you know other methods to solve this error? Please share your ideas or experiences with us in the following comment zone. In addition, if you encounter problems while using MiniTool Partition Wizard, please contact us via [email protected]. We will get back to you as soon as possible.

  • linkedin
  • reddit

About The Author

Charlotte
Charlotte

Position: Columnist

Charlotte is a columnist who loves to help others solve errors in computer use. She is good at data recovery and disk & partition management, which includes copying partitions, formatting partitions, etc. Her articles are simple and easy to understand, so even people who know little about computers can understand. In her spare time, she likes reading books, listening to music, playing badminton, etc.