-2

I'm looking for a solution to remotely (on site, connected to our domain) unlock bitlocker on laptops.

After a few research, I found that this is quite possible with BitLocker Network Unlock, but what we're looking for here is not to automatically unlock laptops connected to the domain, but still asking for the bitlocker password, and be able to unlock remotely (rdp ? gloomy powershell command ?) the drive if needed.

Does anyone have any idea ?

EDIT : We're here talking of the boot volume.

Marc
  • 21
  • 5
  • Bitlocker on boot volumes? Or other volumes? – vidarlo May 03 '22 at 08:48
  • @vidarlo boot volume, I edited my post, thx – Marc May 03 '22 at 09:18
  • do you mean something you enter the hostname or the ID and you received the recovery password to type it in manually? – Manu May 03 '22 at 09:22
  • not really, it would be better to be able to remotely unlock the volume, not telling the user to enter a long recovery key – Marc May 03 '22 at 09:37
  • So you want to unlock a host remotely, when it is not on the network. Also, entering a recovery key should be *extremely rare*, so this is an edge case with very low usage. – Greg Askew May 03 '22 at 10:33
  • Sorry if I was not clear, but the host IS on the network. But we still want the password prompt, whereas BitLocker Network Unlock automatically unlock the volumes. Or can we configure it so it does not ? – Marc May 03 '22 at 10:40
  • Ah now I get what you want. No, this is not possible. Bitlocker is primarily designed to protect data on mobile devices when they get lost or stolen. Bitlocker Network Unlock is designed to bypass the PIN entry in your corporate LAN which can be seen as "safe" environment therefore remove the need to authenticate. – Manu May 03 '22 at 11:01
  • Alright, I guess this answers my question. Have a great day :) – Marc May 03 '22 at 11:49

1 Answers1

2

You cannot reach the machine from remote when it hasn't booted, yet. That's why it's called "Bitlocker pre-boot authentication".

Bernd Schwanenmeister
  • 482
  • 2
  • 5