[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

Bitlocker. Error recovering disk D: The recovery key you typed is not correct.

Posted on 2016-11-10
15
Medium Priority
?
498 Views
Last Modified: 2016-11-14
Dear EE

Please can someone assist with a BitLocker issue.

I got a laptop that had a hdd that has been encrypted with BitLocker and the recovery keys are stored in our AD.

Problem is that every time this laptops boots it attempts a startup repair but it cannot proceed because it keeps asking for the bitlocker key which I have typed in several times and confirmed that it is correct.

Here is the error message:

Bitlocker Drive Encryption Recovery
0
Comment
Question by:TTAF4
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 4
  • 3
15 Comments
 
LVL 7

Assisted Solution

by:Andy
Andy earned 1000 total points
ID: 41881857
Hi, hope this helps:

Unless you have MBAM installed, you may need to retrieve a recovery password from Active Directory, you have to install the BitLocker Recovery Password Viewer. Unfortunately, Microsoft does not make this utility available for download. You can get the password viewer for free by calling Microsoft's support department. The phone number is (800) 936-5700.

Once you install BitLocker Recovery Password Viewer, you can view the recovery password directly through the Active Directory Users and Computers Console. All you have to do is right click on the computer object you want to retrieve the password for and choose the Properties command from the resulting shortcut menu. You will see the password displayed on the resulting properties sheet.
1
 
LVL 56

Assisted Solution

by:McKnife
McKnife earned 1000 total points
ID: 41881860
Try and unlock the drive from windows setup.
Boot windows setup, press shift f10 (a command line appears)
Now let's assume windows setup sees your system as d:, please perform these commands:
manage-bde -protectors -get d:

Open in new window

->this will give you the ID of the recoery key to compare with your AD key. If it matches, unlck the drive like this:
manage-bde -unlock d: -rp 213214-121545-...your 48 digits here...-124523

Open in new window

Then, if it has unlocked successfully, suspend bitlocker like this:
manage-bde -protectors -disable d:

Open in new window

Now reboot.
1
 
LVL 7

Expert Comment

by:Andy
ID: 41881864
If you need more info on manage-bde here is a techenet articleL:
https://technet.microsoft.com/en-us/library/ff829849(v=ws.11).aspx
1
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 

Author Comment

by:TTAF4
ID: 41881989
Hi McKnife

Please see attached picture for the error i am getting

Error
0
 
LVL 56

Expert Comment

by:McKnife
ID: 41881993
Ok. But the identifiers match? Perfectly sure that you entered the numbers correctly?
If so, could it be that it is not win7 after all, but win10?
1
 

Author Comment

by:TTAF4
ID: 41882031
entered in perfectly. Its windows 7 for sure
0
 
LVL 56

Expert Comment

by:McKnife
ID: 41882054
And my other question? Did you double check the ID (2467...) in AD?
1
 

Author Comment

by:TTAF4
ID: 41882059
yeah i did. its correct:

Recovery Password:
               598686-105369-408584-176440-
               487432-011627-074844-590018

Computer: DBN7XN10X1.mydomain
Date: 2016-02-18 14:59:25 +0200
Password ID: 2467BF82-75D7-41D1-9062-BF3E5D742632
0
 

Author Comment

by:TTAF4
ID: 41882094
running a repair-bde to an external drive. seems to be running. fingers crossed
0
 
LVL 7

Expert Comment

by:Andy
ID: 41882102
Recovery key:
598686-105369-408584-176440-487432-011627-074844-590018

On your screenshot you have: 011626 for the 6th set of numbers
1
 

Accepted Solution

by:
TTAF4 earned 0 total points
ID: 41885922
I ended up doing a repair-bde and recovering the data to an external drive. it seems like this was the only way in this case.
thank you all for your time and great responses.
1
 
LVL 56

Expert Comment

by:McKnife
ID: 41885964
Sorry, but you entered the wrong key, that was the problem.
1
 

Author Comment

by:TTAF4
ID: 41886264
Even entrering the correct key did not resolve the problem. the only was to use repair-bde
1

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The conference as a whole was very interesting, although if one has to make a choice between this one and some others, you may want to check out the others.  This conference is aimed mainly at government agencies.  So it addresses the various compli…
A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
The viewer will learn how to successfully create a multiboot device using the SARDU utility on Windows 7. Start the SARDU utility: Change the image directory to wherever you store your ISOs, this will prevent you from having 2 copies of an ISO wit…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Suggested Courses

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question