sglee
asked on
BitLocker on Windows 8, Windows Server 2008 & 2012, SBS2011
Hi,
I successfully enabled BitLocker on Windows 7 Ultimate OS.
Now I like to do the same on Windows 8, Windows Server 2008 & 2012, SBS2011.
Before I do that, are there things that I should be aware?
For example, Does Windows 8 Professional version only comes with BitLocker feature?
When I tried to enable BitLocker on Windows 2008 Server Std. with one drive/partition yesterday, it said that I had to have two partitions to enable BitLocker. So apparently I need an separate OS partition on the top of data partition even if there is only one hard disk?
Having seen that message, I just wanted to get some heads-up before attempting to do this on other server operating systems that I manage.
I successfully enabled BitLocker on Windows 7 Ultimate OS.
Now I like to do the same on Windows 8, Windows Server 2008 & 2012, SBS2011.
Before I do that, are there things that I should be aware?
For example, Does Windows 8 Professional version only comes with BitLocker feature?
When I tried to enable BitLocker on Windows 2008 Server Std. with one drive/partition yesterday, it said that I had to have two partitions to enable BitLocker. So apparently I need an separate OS partition on the top of data partition even if there is only one hard disk?
Having seen that message, I just wanted to get some heads-up before attempting to do this on other server operating systems that I manage.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
@McKnife
Sounds complicated, particularly since I am not familiar with the process.
If the Server gets stolen, first, they are protected by the Windows admin password. Secondly even if the thief takes the hard disks out, they won't be useful because they are part of disk array in RAID system. So I don't have to too much worry about the Servers ...
Sounds complicated, particularly since I am not familiar with the process.
If the Server gets stolen, first, they are protected by the Windows admin password. Secondly even if the thief takes the hard disks out, they won't be useful because they are part of disk array in RAID system. So I don't have to too much worry about the Servers ...
> So I don't have to too much worry about the Servers ...
Sorry, but you don't know what you are talking about. If the thieves have no understanding of Windows, yes, then you won't have to worry. Otherwise...it's very easy to get at the data in minutes. I would stick in a Windows 8.1 to go and after maybe 5 minutes, I have your data.
The process is not complicated, please feel free to ask for Details.
Sorry, but you don't know what you are talking about. If the thieves have no understanding of Windows, yes, then you won't have to worry. Otherwise...it's very easy to get at the data in minutes. I would stick in a Windows 8.1 to go and after maybe 5 minutes, I have your data.
The process is not complicated, please feel free to ask for Details.
Physical access is access.
That's why everyone is starting to focus on encryption now.
You can recreate a RAID array. I've done it before to recover data.
That's why everyone is starting to focus on encryption now.
You can recreate a RAID array. I've done it before to recover data.
ASKER
I like to try your method as mentioned in ID: 39926762.
Please tell me what OS I need to setup for testing - W2008, W2008R2, W2012.
I will do RAID 1 on a test server.
Would you kindley post detailed steps?
Please tell me what OS I need to setup for testing - W2008, W2008R2, W2012.
I will do RAID 1 on a test server.
Would you kindley post detailed steps?
Ok, I will.
But first you have to decide for A or B as I mentioned 2 completely different aproaches.
But first you have to decide for A or B as I mentioned 2 completely different aproaches.
ASKER
How about trying A first?
Do you want me to setup HyperV on W2012 Server or VMWare ESX V5.1?
Do you want me to setup HyperV on W2012 Server or VMWare ESX V5.1?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for the information. I understand why I saw that message on W2008 Server now.
I am glad to hear that on 2008 R2/2012/2012R2/win8, extra partition will be created as BitLocker is turned on.
Now on "Biggest caveat", it make total sense. If I leave the USB flash drive that has the recovery key plugged into the Servers and if they get stolen, it defeats the purposes of encrypting. On the other hand, if the user takes the USB flash drive out of the Server and take it home, then what happens when the Server restarts after the reboot....
It is definitely something to think about...