Differences

This shows you the differences between two versions of the page.

--- computing:security:windows_bitlocker [2021/05/13 12:29]
gcooper
+++ computing:security:windows_bitlocker [2021/05/13 14:38] (current)
gcooper
@@ Line 8: / Line 8: @@
 Bitlocker has been available since Windows Vista but only in Professional and Enterprise versions.
+===== Control Panel =====
+{{ :computing:security:bitlocker_control_panel.png?direct&650 |Bitlocker Control Panel Applet}}
 ===== CLI =====
@@ Line 19: / Line 23: @@
 Get-BitlockerVolume -MountPoint "E:"
 </file>
-{{ :computing:security:bitlocker_control_panel.png?direct&650 |Bitlocker Control Panel Applet}}
 ==== Enable Bitlocker ====
@@ Line 31: / Line 33: @@
 <file>
-manage-bde -protectors -add C: -recoverypassword -startupkey E:
+manage-bde -protectors -add C: -recoverypassword -password -startupkey E:
-manage-bde -protectors -add C: -password
+manage-bde -status
-manage-bde -UsedSpaceOnly -usedspaceonly -on C:
+manage-bde -on C: -usedspaceonly
 </file>
@@ Line 88: / Line 90: @@
 ====== Active Directory ======
+<note tip>Use ''adsiedit.msc'' to delete keys from AD if they are no longer needed.</note>
 {{ :computing:security:bitlocker_ad_1.png?direct&600|Bitlocker Info Stored in AD}}
@@ Line 104: / Line 108: @@
 https://www.experts-exchange.com/articles/33289/How-to-create-a-file-based-bitlocker-protector-for-recovery-and-support-purposes.html
+<file>
+Import-module ActiveDirectory
+Get-ADObject -SearchBase ((GET-ADRootDSE).SchemaNamingContext) -Filter {Name -like 'ms-FVE-*'}
+Get-ADComputer 'some-computer-name'| Get-ADObject -properties * | Select-Object distinguishedname, msFVE-REcoveryPassword, whencreated
+</file>

Virtual Architects Support Wiki

User Tools

Site Tools

Differences

Page Tools