Solved

Pitfalls by using bitlocker on an O/S

Posted on 2011-09-16
2
512 Views
Last Modified: 2012-06-27
Has anyone run across any issues/pitfalls using bitlocker on the O/S.  Data corruption/blue screen/compatibility issues/etc....
I know there is no issues on peripherals but don't think it would be so faultless on the actual o/s
0
Comment
Question by:nomaadic
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 63

Accepted Solution

by:
btan earned 500 total points
ID: 36553599
Some that I can think off
- Key mgmt for recovery of HDD in the event that typically will be connected to backend AD. If the recovery key is lost and user forget or loses his USB key, then the recovery would not be trivial
- If Bitlocker is tied to the TPM, it is binded to machine, so cloning of machine to machine will not be possible to ease mass deployment
- Even during migration to new machine or OS, you may have to temporary disarm Bitlocker which it create a temp key w/o needing user interaction. This may have a short window of exposure
- You cannot use Group Policy to enforce BitLocker PIN rules.
- BitLocker currently does not support smart cards for pre-boot authentication.
- Support for computers that use Extended Firmware Interface (EFI)-based system firmware is planned for Windows Server 2008, but it is not currently supported in Windows Vista.
- Bitlocker creates a  system volume partition (~1.5 Gbytes, on top of another for the OS) to store its startup codes and if machine with recovery partition (for auto revert), have to make sure it is compatible. Ideally there should not be hosting those partition to avoid conflict in bootup if any.
- Bitlocker required  BIOS setting to start up first from the hard drive, not the USB or CD drives.


This FAQ can be useful @ http://technet.microsoft.com/en-us/library/cc766200(WS.10).aspx 
0
 

Author Closing Comment

by:nomaadic
ID: 36563006
Thanks
0

Featured Post

Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question