This blog is a deep dive into the mystery of failing TPM attestation (0x80070490) on Dell Latitude devices (with an STM TPM), how Microsoft seems to have increased  TPM security on 24h2, and what you can (or can’t) do about it