Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Bitlocker on Administrative Shares

Posted on 2013-01-23
5
Medium Priority
?
1,043 Views
Last Modified: 2013-02-18
I have a win8 workstation that is not domain enabled. The only hard disk on it is bitlocker enabled with TPM. Is it correct that any other machines will not be able to access the Administrative Shares of this workstation?

Not even the Domain Administrator on which this workstation is connected to?
0
Comment
Question by:frukeus
  • 2
4 Comments
 
LVL 57

Expert Comment

by:McKnife
ID: 38809963
Hi.

The encryption Bitlocker does not protect the drive when the key is entered and the drive is mounted, so the answer is "no".
0
 
LVL 1

Author Comment

by:frukeus
ID: 38812861
But this is not an external drive....it is the system drive.

I can understand that when an external drive is connected and key entered, the entire drive is visible to the connected machine. But Bitlocker should protect a system drive from remote access via admin shares since the remote system has no way of entering a key, rite?
0
 
LVL 57

Accepted Solution

by:
McKnife earned 2000 total points
ID: 38816682
No, not correct, sorry. Bitlocker does not do anything to protect from against unwanted network access.
Whenever your system starts, c: is mounted after you enter the PIN (if you use a PIN together with your TPM... you should). After it's mounted and windows has booted, the server service shares the shared folders. If we let alone default settings in win7, c: would not be shared, there would be no c$. Only after setting the registry key LocalAccountTokenFilterPolicy (see http://helgeklein.com/blog/2011/08/access-denied-trying-to-connect-to-administrative-shares-on-windows-7/ ), it would be shared and accessible.
No Bitlocker involved.
0
 
LVL 59

Expert Comment

by:LeeTutor
ID: 38903973
I've requested that this question be closed as follows:

Accepted answer: 500 points for McKnife's comment #a38816682

for the following reason:

This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The recent Petya-like ransomware attack served a big blow to hundreds of banks, corporations and government offices The Acronis blog takes a closer look at this damaging worm to see what’s behind it – and offers up tips on how you can safeguard your…
Ransomware - Defeated! Client opened the wrong email and was attacked by Ransomware. I was able to use file recovery utilities to find shadow copies of the encrypted files and make a complete recovery.
This Micro Tutorial will give you a basic overview of Windows Live Photo Gallery and show you various editing filters and touches to photos you can apply. This will be demonstrated using Windows Live Photo Gallery on Windows 7 operating system.
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

782 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question