Bitlocker Network Unlock Not Working - Network Protector wont appear

hello!

first post on technet, apologize lack of information provided. happy provide additional info if needed. :)

have been setting bitlocker network unlock , have gotten point ready test.

using guide found here: https://technet.microsoft.com/en-us/library/jj574173(v=ws.11).aspx

have followed instructions diligently. however, when turn on bitlocker on client machine (which running server 2012 r2) the network (certificate based) protector not listed when run "manage-bde –protectors –get c:"

output after turning on bitlocker:

c:\windows\system32>manage-bde -protectors -get c:
bitlocker drive encryption: configuration tool version 6.3.9600
copyright (c) 2013 microsoft corporation. rights reserved.

volume c: []
all key protectors

    password:
      id: {a01e17f4-3a27-4dc1-b8ab-bbc10366b7c1}

    numerical password:
      id: {7529a1e9-ba5e-4381-953c-065ea3474a97}
      password:
        337491-192984-705056-600281-097295-301455-097438-248347

--

troubleshooting:

• have confirmed certificate has been deployed via group policy , shows in hklm\software\policies\microsoft\systemcertificates\fve_nkp.
• group policy settings network unlock enabled , linked correct ou.
• have gone through of troubleshooting steps in guide linked above.

any advice appreciated.

turned out tpm wasn't being detected windows.

see - https://support.microsoft.com/en-us/help/3095701/tpm-2.0-device-can-t-be-recognized-in-windows-server-2012-r2

i installed kb3095701 , protector generated when turned on bitlocker.

p.s. sorry for lack of hyperlinks. can't submit links until account verified. >.<

Windows Server  >  Security