0X80280058

TPM_E_BAD_HANDLE (0X80280058) fix: handle is incorrect

Windows Errors Intermediate 👁 5 views 📅 Jun 3, 2026

This error pops up when Windows can't talk to the TPM chip properly. Usually happens after a BIOS update, power surge, or swapping motherboards.

What's happening when you see TPM_E_BAD_HANDLE?

You're trying to use something that relies on the TPM chip — maybe BitLocker, Windows Hello, or a security app — and you get error code 0X80280058 with the message "The handle is incorrect." This means Windows has lost its connection to the TPM chip. The handle it's using to talk to the chip doesn't match what the chip expects.

This often happens right after a BIOS update, a power outage that interrupted a TPM operation, or if you swapped in a used motherboard with a different TPM state. Don't panic — it's almost always fixable without reinstalling Windows.

Quick fix (30 seconds): Clear the TPM from Windows

This is the first thing to try. It clears out the junk handles Windows is holding.

  1. Press Windows key + R, type tpm.msc, and hit Enter. This opens the TPM Management console.
  2. Look for the Actions pane on the right side. Click Clear TPM.
  3. You'll get a warning that clearing the TPM will remove BitLocker keys, security certificates, and biometric data. If you use BitLocker, pause or decrypt your drives first — otherwise you'll lose access. If you don't have BitLocker on, go ahead.
  4. Click Restart. Your PC will reboot and prompt you to press a key (usually F12, F10, or Delete — watch the screen) to confirm the TPM clear during POST.
  5. After you press the key, Windows will boot normally and reinitialize the TPM. Try your original task again.

What you'll see after: If this worked, the TPM management console will show "The TPM is ready for use" and your error should be gone.

Moderate fix (5 minutes): Reset TPM from BIOS

If the quick fix didn't work, or if Windows itself can't reach the TPM, you'll need to do it from BIOS.

  1. Restart your PC. During boot, press the key to enter BIOS setup — that's usually F2, Delete, or F10 depending on your motherboard. ASUS boards are often F2 or Delete. Dell is F2. HP is F10.
  2. Look for a section called Security, Trusted Computing, or TPM. It's often buried under "Advanced" or "Peripherals."
  3. Find the setting for Clear TPM or TPM Reset. Enable it and save and exit. This might be labeled "Clear TPM Key" or "Factory Reset TPM."
  4. The PC will reboot and clear the TPM at the hardware level. After it boots back into Windows, the TPM will reinitialize fresh.
  5. Open tpm.msc again to confirm it shows "ready for use."

What to watch for: Some BIOS versions hide the TPM reset under a submenu. On Intel boards, it's often under "Intel Platform Trust Technology" or "PTT." On AMD, it's under "AMD fTPM." If you can't find it, check your motherboard manual or look up the model online.

Advanced fix (15+ minutes): Reinstall TPM driver and clear cached handles

If BIOS reset didn't stick, or if the TPM still shows errors, the driver layer might be corrupted.

  1. Press Windows key + X and select Device Manager.
  2. Expand the Security devices section. You should see something like "Trusted Platform Module 2.0."
  3. Right-click it and select Uninstall device. Check the box that says "Attempt to remove the driver for this device" if it appears. Confirm.
  4. Now, before you reboot, open an elevated Command Prompt: press Windows key + X, select Windows Terminal (Admin) or Command Prompt (Admin).
  5. Run this command to clear any leftover TPM handles in the driver:
    certutil -delstore -user -f -silent my "TPM"
    (This removes cached TPM certificates that might interfere.)
  6. Reboot the PC. Windows will automatically reinstall the TPM driver.
  7. After reboot, open tpm.msc and check status. If it still shows an issue, run this command in an admin Command Prompt:
    powershell -Command "Get-WmiObject -Namespace root/cimv2/Security/MicrosoftTpm -Class Win32_Tpm | Clear-Tpm"
    This uses PowerShell to clear the TPM at the WMI level.

Real-world scenario: A tech friend of mine got this error after updating the BIOS on a Dell OptiPlex 7080 for a security patch. The quick fix cleared his TPM in 30 seconds. Another user on a custom Ryzen build with fTPM had to do the BIOS reset — the Windows clear didn't work because the chip was locked.

When this fix won't work

If you've tried all three and the error persists, you've got a hardware problem. The TPM chip might be physically damaged, or the motherboard's TPM header is loose. On some early Ryzen boards, the AMD fTPM had a bug that required a BIOS update from the manufacturer — check your board's support page for a BIOS version that mentions "fTPM stability" or "TPM fix."

Also, if you're using a discrete TPM module plugged into the motherboard, reseat it. Power down, unplug the PSU, open the case, remove the TPM module, and plug it back in firmly. This alone has fixed the error for some users.

Last resort: if BitLocker was active and you cleared the TPM without decrypting, you'll need your BitLocker recovery key to unlock the drive. That key is usually saved to your Microsoft account or printed when you first set up BitLocker. If you don't have it, you're locked out.

Was this solution helpful?

TPM_E_BAD_HANDLE 0X80280058 TPM error handle incorrect Windows TPM BitLocker TPM error clear TPM reset TPM TPM troubleshooting Windows 11 TPM TPM 2.0 TPM chip error secure boot TPM