Add simple USB in addtion to TPM for Bitlocker Boot

gpedit.msc
Computer Configuration > Administrative Templates > Windows Components > BitLocker Drive Encryption > Operating System Drives
Require Additional Authentication at startup
Enable then Configure TPM Startup Key
Require Startup Key With TPM
manage-bde -protectors -add c: -TPMAndStartupKey [USB DRIVE LETTER]
manage-bde -status

Latest NTP Time Server Setup

Help for when root shows as Local CMOS

net stop w32time
w32tm /unregister
w32tm /register
net start w32time
w32tm /config /manualpeerlist:”0.pool.ntp.org 1.pool.ntp.org 2.pool.ntp.org 3.pool.ntp.org” /syncfromflags:manual /reliable:yes /update
w32tm /resync /rediscover /nowait
w32tm /config /reliable:yes

Back to Top