Premium versions of Microsoft's Windows Vista, such as the volume-license Enterprise edition, are set to include the BitLocker disk encryption tool when Vista becomes available.

Another proviso for using this is that systems must have a Trusted Platform Module (TPM), a chip on the motherboard that can securely store and generate encryption keys.

As part of recent tests for a review of Dell's OptiPlex 745 desktop, I installed Windows Vista RC2 to see how it performed. The OptiPlex also includes a TPM, so it seemed like a good opportunity to try out BitLocker.

The first obstacle to tackle was that Dell ships its systems with the TPM disabled by default, so I had to access the Bios setup and enable the chip. This is a two-part process on the OptiPlex; first you have to turn 'TPM Security' on, and then use a second menu option to activate the TPM.

Perhaps foolishly, I thought that Vista might then guide me through the rest of the process. I found the BitLocker option in the Security section of the Windows Control Panel and opened it, to be greeted with a message that helpfully stated 'Your system is not configured to use BitLocker drive encryption'.

Following a little background research, I returned to the system and sought out the new TPM Services module in the Microsoft Management Console. This has facilities to let you initialise a TPM and take ownership, which basically means setting a password to control the TPM. Windows can automatically create a strong password for you and save it to a file on a USB Flash disk, which I duly did.

Sadly, trying BitLocker again simply resulted in a message stating that the Bios was not correctly communicating with the TPM, and recommending that I contact the manufacturer to get an upgrade. Requests to Dell for help have so far not elicited any response, so BitLocker tests will have to wait for another day.

02 Nov 2006