Bills122
asked on
Bitlocker Win7 Ultimate
Hi I recently turned Bitlocker on for 3 new laptops with tpm. These are being managed by the ad and there is a policy in place for machines with bitlocker installed. When I started the bitlocker process I inserted a blank usb drive into the machine. As I went through the setup for bitlocker it asked me and only gave me the choice of entering a PIN number at every startup. I added this and the encryption process began. In the past when I did this I was able to go back into the control and bitlocker and make a secondary backup of the recovery key for it to store in case the end user lost the original. This option is not showing up all I see is the option to reset the pin number. I have looked on other machines in our ad that have bitlocker and they have the option to back up the recovery key. Did I miss a step somewhere in the process? Any help would be appreciated.
Thank you
Thank you
ASKER
Nice answer but... As I stated this option does not show up. All I get is the ability to reset the security pin.
Thanks for trying
Thanks for trying
Hi.
If you use AD to manage it, didn't you set it up so that rec. keys are backed up to AD automatically? If not, try this via command line:
manage-bde -protectors -get c:
...like shown here: http://blogs.technet.com/b/askcore/archive/2010/04/06/how-to-backup-recovery-information-in-ad-after-bitlocker-is-turned-on-in-windows-7.aspx
If you use AD to manage it, didn't you set it up so that rec. keys are backed up to AD automatically? If not, try this via command line:
manage-bde -protectors -get c:
...like shown here: http://blogs.technet.com/b/askcore/archive/2010/04/06/how-to-backup-recovery-information-in-ad-after-bitlocker-is-turned-on-in-windows-7.aspx
ASKER
Hi McKnife - I will give this a look at and then a try. To answer your question. I do not know if it is manage by ad or not. I am suspecting NO seeing they have me saving to thumb drives. Is there a way for me to tell if it is being managed by AD?
Thank you
Thank you
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I've requested that this question be deleted for the following reason:
Not enough information to confirm an answer.
Not enough information to confirm an answer.
ASKER
Sorry I have been out of touch for a emergency in the family. I pay for this service and think it is ever so wrong to just delete questions that a MEMBER that pays ask.
However thank you for the answer you provided it did point me in the right direction.
However thank you for the answer you provided it did point me in the right direction.
http://windows.microsoft.com/en-us/windows7/what-is-a-bitlocker-recovery-key