How to Install TPM Diagnostics Tool in Windows 11
The Trusted Platform Module (TPM) is a specialized security processor, or hardware root-of-trust, built into your motherboard. It protects your encryption keys, Windows Hello credentials, and BitLocker drive encryption. The TPM Diagnostics tool is an optional feature that allows you to verify the health and capabilities of this chip.
Why: You need this tool to ensure your hardware security is functioning correctly. It helps troubleshoot issues where features like BitLocker or Secure Boot fail to initialize.
What happens when done: You will have a command-line utility that generates detailed reports about your TPM 2.0 chip, helping you confirm that your system meets enterprise security standards.
Installation Methods Comparison
| Method | Difficulty | Best For |
|---|---|---|
| Settings App | Easy | General users |
| Command Prompt | Medium | Power users |
| PowerShell | Medium | IT Administrators |
Using the Settings App
Note: You must have administrator privileges to install or remove this feature.
- Open the Start menu and select Windows Settings app.
- Click on the Apps button on the left side.
- Click the Optional features box.
- Click the View features button.
- Type “TPM” into the search box.
- Check the box next to TPM Diagnostics and click Next.
- Click Install.
Using Command Prompt or PowerShell
Warning: You must run these tools as an administrator. Right-click the Start button and select Terminal (Admin) or Command Prompt (Admin).
To install via Command Prompt:DISM /Online /Add-Capability /CapabilityName:Tpm.TpmDiagnostics~~~~0.0.1.0
To install via PowerShell, use the following command:Add-WindowsCapability -Online -Name Tpm.TpmDiagnostics~~~~0.0.1.0
Troubleshooting and Enterprise Context
If the tool fails to install, ensure your system is connected to the internet, as Windows Update must fetch the package. In enterprise environments, Group Policy may restrict the installation of optional features. If you receive an error, check your local policy settings at HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate. For further technical details, refer to the official Microsoft documentation.
Summary
The TPM Diagnostics tool is a vital utility for verifying your computer’s security processor. By following this guide, you can install the tool using the Settings app, Command Prompt, or PowerShell. Always ensure you have administrative rights before starting. Once installed, you can use the TpmDiagnostics.exe command to verify your hardware root-of-trust and ensure your system is fully protected.
Is the TPM Diagnostics tool installed by default in Windows 11?
No, the TPM Diagnostics tool is not installed by default. It is classified as an optional feature within Windows 11. You must manually add it through the Optional Features menu or via command-line tools if you need to perform advanced security hardware troubleshooting or verification tasks.
Does the TPM Diagnostics tool require administrative privileges?
Yes, installing, removing, or running the TPM Diagnostics tool requires administrative privileges. Because the tool interacts directly with low-level hardware security components, Windows restricts access to these functions to prevent unauthorized users from modifying or querying sensitive security processor data on your computer.
Was this guide helpful?
About the Author
Richard
Tech Writer, IT Professional
Richard, a writer for Geek Rewind, is a tech enthusiast who loves breaking down complex IT topics into simple, easy-to-understand ideas. With years of hands-on experience in system administration and enterprise IT operations, he’s developed a knack for offering practical tips and solutions. Richard aims to make technology more accessible and actionable. He's deeply committed to the Geek Rewind community, always ready to answer questions and engage in discussions.
[…] As mentioned above, one of Windows 11’s requirements is to have TPM 2.0 enabled and CPUs that support it. The easiest way to determine if your PC supports TPM 2.0 is to run the Windows 11 PC Health Check app. […]