Bitlocker. Error recovering disk D: The recovery key you typed is not correct.

Dear EE

Please can someone assist with a BitLocker issue.

I got a laptop that had a hdd that has been encrypted with BitLocker and the recovery keys are stored in our AD.

Problem is that every time this laptops boots it attempts a startup repair but it cannot proceed because it keeps asking for the bitlocker key which I have typed in several times and confirmed that it is correct.

Here is the error message:

Bitlocker Drive Encryption Recovery
TTAF4Asked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
TTAF4Connect With a Mentor Author Commented:
I ended up doing a repair-bde and recovering the data to an external drive. it seems like this was the only way in this case.
thank you all for your time and great responses.
1
 
AndyConnect With a Mentor It ConsultantCommented:
Hi, hope this helps:

Unless you have MBAM installed, you may need to retrieve a recovery password from Active Directory, you have to install the BitLocker Recovery Password Viewer. Unfortunately, Microsoft does not make this utility available for download. You can get the password viewer for free by calling Microsoft's support department. The phone number is (800) 936-5700.

Once you install BitLocker Recovery Password Viewer, you can view the recovery password directly through the Active Directory Users and Computers Console. All you have to do is right click on the computer object you want to retrieve the password for and choose the Properties command from the resulting shortcut menu. You will see the password displayed on the resulting properties sheet.
1
 
McKnifeConnect With a Mentor Commented:
Try and unlock the drive from windows setup.
Boot windows setup, press shift f10 (a command line appears)
Now let's assume windows setup sees your system as d:, please perform these commands:
manage-bde -protectors -get d:

Open in new window

->this will give you the ID of the recoery key to compare with your AD key. If it matches, unlck the drive like this:
manage-bde -unlock d: -rp 213214-121545-...your 48 digits here...-124523

Open in new window

Then, if it has unlocked successfully, suspend bitlocker like this:
manage-bde -protectors -disable d:

Open in new window

Now reboot.
1
The new generation of project management tools

With monday.com’s project management tool, you can see what everyone on your team is working in a single glance. Its intuitive dashboards are customizable, so you can create systems that work for you.

 
AndyIt ConsultantCommented:
If you need more info on manage-bde here is a techenet articleL:
https://technet.microsoft.com/en-us/library/ff829849(v=ws.11).aspx
1
 
TTAF4Author Commented:
Hi McKnife

Please see attached picture for the error i am getting

Error
0
 
McKnifeCommented:
Ok. But the identifiers match? Perfectly sure that you entered the numbers correctly?
If so, could it be that it is not win7 after all, but win10?
1
 
TTAF4Author Commented:
entered in perfectly. Its windows 7 for sure
0
 
McKnifeCommented:
And my other question? Did you double check the ID (2467...) in AD?
1
 
TTAF4Author Commented:
yeah i did. its correct:

Recovery Password:
               598686-105369-408584-176440-
               487432-011627-074844-590018

Computer: DBN7XN10X1.mydomain
Date: 2016-02-18 14:59:25 +0200
Password ID: 2467BF82-75D7-41D1-9062-BF3E5D742632
0
 
TTAF4Author Commented:
running a repair-bde to an external drive. seems to be running. fingers crossed
0
 
AndyIt ConsultantCommented:
Recovery key:
598686-105369-408584-176440-487432-011627-074844-590018

On your screenshot you have: 011626 for the 6th set of numbers
1
 
McKnifeCommented:
Sorry, but you entered the wrong key, that was the problem.
1
 
TTAF4Author Commented:
Even entrering the correct key did not resolve the problem. the only was to use repair-bde
1
All Courses

From novice to tech pro — start learning today.