Manageability of the TPM Chip with ConfigMgr
The ideal situation, covering multiple different requests here at UV, would be to be capable to manage the TPM (v)Chip during lifetime of an endpoint.
OSD: For example, clear, enable, initiate, take ownership, Adapt the Physical Presence Interface for the Clear action of the TPM at the beginning of the TS. This would allow to adapt the Preprovisioning BitLocker step to immediately take the advantage of the TPM Chip. If the Physical Presence Interface has been adapted for the clear action, show a message for the user to accept the change, etc.. .Part of Device Health Attestation reporting, report the status of a TPM Chip (with or without input from MBAM) so it can be autoremediated
Maybe even make MDM policies for this ?
There are Universal (regardless of the vendor) WMI Methods available for all these steps allowing this in WinPE and Full Windows