Solved

bitLocker GPO best practice settings

Posted on 2013-10-31
2
815 Views
Last Modified: 2013-10-31
Hi,

We've enabled machines to be able to store TPM information in AD, run the add-tpm script, and would now like to configure the BitLocker GPO according to some sort of best practice reference. Ideally, we would like to store a recovery password in AD. Any ideas where we can get hold of one?

Thanks!
0
Comment
Question by:rookie_b
2 Comments
 
LVL 25

Accepted Solution

by:
Tony Johncock earned 500 total points
ID: 39613773
Have you read the following best practices guides from MS?

http://technet.microsoft.com/en-us/library/dd875532(v=ws.10).aspx
http://technet.microsoft.com/en-us/library/jj592683.aspx

As for storing the recovery password in AD - there are some step-by-step steps here:

http://technet.microsoft.com/en-us/library/dd875529(v=ws.10).aspx

They also provide the scripts you need to run to achieve what you're trying to do.
0
 

Author Closing Comment

by:rookie_b
ID: 39614684
Excellent!
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Okta automated O365 provisioning for new accounts 4 23
File Screening 1 16
Power shell 4 30
UniFi MAC address filtering 2008 R2 13 51
Businesses who process credit card payments have to adhere to PCI Compliance standards. Here’s why that’s important.
This article shows the method of using the Resultant Set of Policy Tool to locate Group Policy that applies a particular setting.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question