RPPreacher
asked on
No Bitlocker Tab on RSAT
I am testing Bitlocker on Windows 7 Ultimate in a Windows 2008 R2 domain. I enabled bitlocker on 1 laptop to test; however, the bitlocker recovery key is not visible in RSAT.
I set a GPO.
Store BitLocker recovery information in Active Directory Domain Services(Windows Server 2008 and Windows Vista) Enabled
Require BitLocker backup to AD DS Enabled
If selected, cannot turn on BitLocker if backup fails (recommended default).
If not selected, can turn on BitLocker even if backup fails. Backup is not automatically retried.
Select BitLocker recovery information to store: Recovery passwords and key packages
A recovery password is a 48-digit number that unlocks access to a BitLocker-protected drive.
A key package contains a drive's BitLocker encryption key secured by one or more recovery passwords
Key packages may help perform specialized recovery when the disk is damaged or corrupted.
I moved the computer account in the OU with the linked GPO.
Refreshed GP, logged in, enabled bitlocker, no recovery key.
What am I missing?
I set a GPO.
Store BitLocker recovery information in Active Directory Domain Services(Windows Server 2008 and Windows Vista) Enabled
Require BitLocker backup to AD DS Enabled
If selected, cannot turn on BitLocker if backup fails (recommended default).
If not selected, can turn on BitLocker even if backup fails. Backup is not automatically retried.
Select BitLocker recovery information to store: Recovery passwords and key packages
A recovery password is a 48-digit number that unlocks access to a BitLocker-protected drive.
A key package contains a drive's BitLocker encryption key secured by one or more recovery passwords
Key packages may help perform specialized recovery when the disk is damaged or corrupted.
I moved the computer account in the OU with the linked GPO.
Refreshed GP, logged in, enabled bitlocker, no recovery key.
What am I missing?
ASKER
I have TPM and it is enabled in the BIOS. Why would that cause me to be unable to see the key in RSAT?
Bitlocker is enabled. I just cannot see the recovery key in AD.
Bitlocker is enabled. I just cannot see the recovery key in AD.
ASKER
I already have that installed.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Check if you have it and if its loaded in bios giving you issues