Reset platform validation data after BitLocker recovery

Supported OS tags: Windows10, Windows10RT, Windows11, Windows8, Windows81, WindowsRT, WindowsRT81, WindowsServer2012, WindowsServer2012R2, WindowsServer2016

This policy setting allows you to control whether or not platform validation data is refreshed when Windows is started following BitLocker recovery. If you enable this policy setting, platform validation data will be refreshed when Windows is started following BitLocker recovery. If you disable this policy setting, platform validation data will not be refreshed when Windows is started following BitLocker recovery. If you do not configure this policy setting, platform validation data will be refreshed when Windows is started following BitLocker recovery.

This policy has no additional user input fields.

• Computer
  Allow devices compliant with InstantGo or HSTI to opt out of pre-boot PIN.

  At least Windows Server 2016, Windows 10 Version 1703
• Computer
  Allow enhanced PINs for startup

  At least Windows Server 2008 R2 or Windows 7
• Computer
  Allow network unlock at startup

  At least Windows Server 2012 or Windows 8
• Computer
  Allow Secure Boot for integrity validation

  At least Windows Server 2012, Windows 8 or Windows RT
• Computer
  Choose how BitLocker-protected operating system drives can be recovered

  At least Windows Server 2008 R2 or Windows 7
• Computer
  Configure minimum PIN length for startup

  At least Windows Server 2008 R2 or Windows 7
• Computer
  Configure pre-boot recovery message and URL

  At least Windows Server 2016 or Windows 10