<div>
Apologies for the duplicate response ... I meant to include under #2 above:<br />
<br />
Check the following attributes via ADSIEdit or ADSI CLI tools (dsquery, ldifde, etc.):<br />

<ul>
<li> &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; CN=ms-FVE-KeyPackage – attributeSchema &nbsp;object </li>
<li>CN=ms-FVE-RecoveryGuid – attributeSchema &nbsp;object</li>
<li>CN=ms-FVE-RecoveryInformat<wbr />ion – &nbsp;classSchema object</li>
<li>CN=ms-FVE-RecoveryPassword<wbr /> – &nbsp;attributeSchema object</li>
<li>CN=ms-FVE-VolumeGuid – attributeSchema &nbsp;object </li>
<li>CN=ms-TPM-OwnerInformation<wbr /> – &nbsp;attributeSchema object</li>
</ul>
</div>


Apologies for the duplicate response ... I meant to include under #2 above:

Check the following attributes via ADSIEdit or ADSI CLI tools (dsquery, ldifde, etc.):

 *               CN=ms-FVE-KeyPackage – attributeSchema  object
 * CN=ms-FVE-RecoveryGuid – attributeSchema  object
 * CN=ms-FVE-RecoveryInformation –  classSchema object
 * CN=ms-FVE-RecoveryPassword –  attributeSchema object
 * CN=ms-FVE-VolumeGuid – attributeSchema  object
 * CN=ms-TPM-OwnerInformation –  attributeSchema object

<div>
<div class="content wysiwyg-content">
These questions seem so easy that I should have found them in the 3 Microsoft Press books or over the last 90 minutes of Googling.<br />
<br />
(1) &nbsp;Do I need to do anything to Server 2008 R2 domain to store the bitlocker recovery keys?<br />
(2) &nbsp;How do I view the keys in AD to confirm that they are being stored?<br />
(3) &nbsp;How do I recover a drive if the user loses the key?<br />
<br />
Thanks!
</div>
</div>


These questions seem so easy that I should have found them in the 3 Microsoft Press books or over the last 90 minutes of Googling.

(1)  Do I need to do anything to Server 2008 R2 domain to store the bitlocker recovery keys?
(2)  How do I view the keys in AD to confirm that they are being stored?
(3)  How do I recover a drive if the user loses the key?

Thanks!

Bitlocker, Windows 7 Ultimate and Server 2008 R2

Windows 7 is an operating system from Microsoft. Features include multi-touch support, a redesigned Windows Shell with a new taskbar, referred to as the Superbar, a home networking system called HomeGroup, and performance improvements.

Windows 7

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

The Microsoft Server topic includes all of the legacy versions of the operating system, including the Windows NT 3.1, NT 3.5, NT 4.0 and Windows 2000 and Windows Home Server versions.