How to Fix “Trusted Platform Module Has Malfunctioned” Error in Windows

Work your way down the list below

Do you keep receiving a “Trusted platform module has malfunctioned” error in Windows 11 or 10 while attempting to activate Microsoft 365 apps? We will show you how to fix it.

Microsoft 365 apps like Word, Outlook, and Teams will throw out a “Trusted platform module has malfunctioned” warning during authentication if they run into issues communicating with theTPM (Trusted Platform Module) chipset on your PC. You may also see error codes like 80090030, 80090016, and 80284001 accompany it.

Work through the instructions below to fix the “Trusted platform module has malfunctioned” error on a Windows 10 or 11 PC. Make sure to re-activate your Microsoft 365 products after each fix. You may have to set up Windows Hello or your PIN repeatedly after some fixes.

Reset Microsoft 365 Activation State

It’s best to begin by using Microsoft’s Support and Recovery Assistant to reset the current Office 365 activation state. That allows you to re-activate your Office apps with a fresh slate.

  1. Download theSupport and Recovery Assistantfrom the Microsoft website.

  2. Run the downloaded executable file and selectInstall. The Support and Recovery Assistant will launch soon after.

  3. SelectOffice>Next. PickMicrosoftTeamsorOutlookif the issue is limited to either product.

  4. Follow the on-screen instructions to reset the Microsoft 365 activation state.

  5. SelectRestartto complete resetting the Office activation state.

Disable Your Antivirus Software

Third-party security software tends to create various errors while activating Microsoft 365 apps. If you use an anti-malware utility on your computer, briefly disable it and check if that makes a difference.

Clear the TPM Keys in Windows

If the TPM error persists, try resetting the Trusted Platform Module to its default state. Microsoft recommends that you save your work andback up the personal data on your PCbefore you begin.

  1. Open theStart menuand selectWindows Security.

  2. SelectDevice Securityon the Windows Security sidebar. Then, selectSecurity processor details.

  3. SelectSecurity processor troubleshooting.

  4. Select theClear TPMbutton

  5. SelectClear and restartto confirm you want to reset the security processor on your Windows PC.

Another way to reset the TPM on your PC is to:

  1. PressWindows Key+Rto open a Run box. Then, typetpm.mscand selectOK.

  2. SelectAction>Clear TPMon the menu bar.

  3. SelectRestart.

Remove Your Microsoft Office Credentials

The following fix involves removing any existing Microsoft Office credentials from Windows before your next attempt at activating Office products.

  1. PressWindows+S, typeControl Panel, and selectCredential Manageramong the search results.

  2. SelectWindows credentials.

  3. UnderGeneric credentials, expand any credentials for Office applications and selectRemove.

  4. SelectYesto confirm.

  5. Restart your computer.

If your Microsoft 365 account differs from the Microsoft Account you use to sign in to Windows, it’s best to remove it before restarting your computer.

  1. Open theStart menuand selectSettings.

  2. Go toAccounts>Access work or school.

  3. Select the work or school account you use to sign in to your Microsoft 365 apps and selectDisconnect.

Turn On Memory Integrity

Memory integrity is a native security feature in Windows that protects high-security processes from malicious attacks. Turning it on may make the “Trusted platform module has malfunctioned” error disappear.

  1. OpenWindows Securityand selectDevice Securityon the sidebar.

  2. SelectCore isolation details.

  3. Activate theMemory integrityswitch and restart your computer.

Update Your Computer’s Trusted Platform Module Drivers

Outdated TPM drivers can be another reason why the “Trusted platform module has malfunctioned” error appears on your PC. Check for and install any new TPM updates.

  1. PressWindows+Rto open a Run box. Then, typedevmgmt.mscand selectOK.

  2. Expand theSecurity devicescategory.

  3. Right-clickTrusted Platform Moduleand selectUpdate driver.

  4. SelectSearch automatically for drivers.

  5. Wait until Windows detects and installs new TPM drivers.

If the Device Manager fails to find newer drivers, try Windows Update instead. To do that:

  1. Open your computer’sSettingsapp and selectWindows Update.

  2. SelectCheck for updates.

  3. SelectView optional updates>Driver updatesand install any pending hardware driver updates.

Uninstall and Reinstall TPM Drivers

If your PC has no new TPM drivers, consider uninstalling and reinstalling them next. That will resolve possible instances of driver corruption. To do that:

  1. Open the Device Manager and expandSecurity devices.

  2. Double-clickTrusted Platform Moduleand selectUninstalldevice.

  3. SelectUninstallto confirm.

  4. Restart your computer.

  5. Re-open the Device Manager, right-clickSecurity devices, and selectScan for Hardware Changes.

Disable Modern Authentication Protocols

By default, Microsoft 365 uses modern account authentication protocols like OAuth and SAML for activation. However, despite the enhanced security, they can also result in the “Trusted platform module has malfunctioned” error. Disabling them using the following registry hack might fix it.

  1. Press theWindows+Rkeys to open a Run box. Then, typeregeditand pressEnter.

  2. Copy and paste the following path into the top of the Registry Editor window and pressEnter:

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Office\16.0\Common\Identity

  1. Right-click the vacant area to the right and selectNew>DWORD (32-bit) Value.

  2. Rename the new entry asEnableADAL.

  3. Open the new registry entry and make sure that theValue datafield has a value ofO.

  4. Restart your computer.

Take Ownership of Ngc Folder

“Ngc” is a system folder that stores your Windows Hello security information. Sometimes, it can corrupt and generate the “Trusted platform module has malfunctioned” error. Deleting the folder’s contents will force Windows to recreate everything from scratch.

  1. Open File Explorer. Then, copy and paste the following path and pressEnter:

C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft

  1. Right-click theNgcfolder and selectProperties.

  2. Switch to theSecuritytab and selectAdvanced.

.

  1. SelectChangenext toOwner.

  2. Enter your Windows user account name into the vacant box and selectOK.

  3. Check the box next toReplace owners on subcontainers and objectscheckbox and selectApply>OK.

  4. SelectYes.

  5. Open the NGC folder and delete all contents inside.

  6. Restart your computer.

Delete BrokerPlugin and CloudExperienceHost Account Data

Next, remove all account-related data related to the BrokerPlugin and CloudExperienceHost processes. To do that:

  1. Open File Explorer and visit the following locations:

  2. Delete all files inside both directories.

  3. Reboot your PC and run the Microsoft Support and Recovery Assistant again.

Clean booting Windows will prevent conflicts from third-party startup processes during the Microsoft 365 activation process. To do that:

  1. Open a Run box. Then, typemsconfigand selectOK.

  2. Check the box next toHide allMicrosoftservicesand selectDisable all.

  3. Switch to theStartuptab and selectOpen Task Manager.

  4. Disable all non-Microsoft processes.

  5. Restart your PC and re-activate Microsoft 365.

  6. Re-activate the disabled services and startup programs.

Create a New User Account in Windows

Windows profile corruption is another plausible reason for TPM errors. Hence, try setting up Microsoft 365 in a new Windows user account. To do that:

  1. Open theSettingsapp and selectAccounts.

  2. SelectFamily & other userson the Settings sidebar. Then, selectAdd someone else to this PCunderOther users.

  3. SelectI don’t have this person’s sign-in information>Add a user without aMicrosoftaccount.

  4. Insert a username and password and create a new local account.

  5. Sign in to the new account.

  6. Install Microsoft 365 and activate it. If that helps,migrate your data into the new accountanddelete your old profile.

Trusted Platform Module Has Malfunctioned Fixed

The “Trusted Platform Module Has Malfunctioned” error can be tricky to resolve. However, take the time to work your way through the fixes above, and you should be able to get rid of it eventually.

If none of the fixes above help,check if the BIOS or UEFI needs an update. If that’s not an issue, considerresetting Windows to factory defaults.

Dilum Senevirathne is a freelance tech writer and blogger with three years of experience writing for online technology publications. He specializes in topics related to iOS, iPadOS, macOS, and Google web apps. When he isn’t hammering away at his Magic Keyboard, you can catch him binge-watching productivity hacks on YouTube.Read Dilum’s Full Bio

Welcome to Help Desk Geek- a blog full of tech tips from trusted tech experts. We have thousands of articles and guides to help you troubleshoot any issue. Our articles have been read over 150 million times since we launched in 2008.

HomeAbout UsEditorial StandardsContact UsTerms of Use

Copyright © 2008-2024 Help Desk Geek.com, LLC All Rights Reserved