just a question on Bitlocker for the experts. I've tried to find an answer online to no avail.
I know in Windows 10 pro (and previous o/s) you can have different login methods after encryption. You can encrypt the hardrive by right clicking C: and selecting the "Turn Bitlocker on" method, following the standard/ recommended process. However, i also know that in gpedit.msc you can configure the "Require additional authentication at startup" so that you can enter a PIN/Password on boot.
My question is.. What is the difference between them both? If i choose *not* to have an additional authentication at startup but have the hardrive encrypted, what are the security implications here?
I would really appreciate help/guidance if possible :)