Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [bitlocker]

Microsoft Windows technology for full disk(volume) encryption.

BitLocker is a full disk encryption feature that adds a layer of security to storage devices to protect data and sensitive information from falling into the wrong hands. BitLocker is available in the Windows 7 Enterprise and Ultimate Operating Systems as well as Windows Server 2008 and 2008 R2 Operating Systems.

Features include:

  • Multi-factor authentication
  • Ability to encrypt Removable storage devices
  • AES 128-bit encryption
  • Group Policy and Active Directory integration
143 questions
2
votes
0 answers

Bitlocker says PIN is incorrect

I have new batch laptops to image, almost all of them are done but 2 of them (same models) have an issue I can't resolve. I enable bitlocker and make sure that its also recoverable by PIN. This works fine, but not on the 2 I mentioned. I have them…
Saeed
  • 366
  • 3
  • 11
2
votes
1 answer

Bitlocker data drive opens as read only -

I have a virtualized Windows Server 2012R2 running on ESXi 6.0 There are 2 virtual disks in this system, an unencrypted C drive for the OS and a Bitlocker encrypted D drive for data sharing. Bitlocker unlock method is via a password. When the drive…
user323936
  • 29
  • 1
  • 2
2
votes
1 answer

Hyper-V Guest data encryption

I have a new requirement to encrypt the data inside an sql database while it is at rest. So far I've looked at Bitlocker (see below), and other commercial products (I won't name because I'm not looking for this product is best answers). I've also…
Drifter104
  • 3,773
  • 2
  • 25
  • 39
2
votes
1 answer

How can I input password to manage-bde -pw option via windows powershell

I am trying to encrypt Data volume (for example E:) with the following command: manage-bde -protectors -add E: -pw When I execute the above command, it will ask for the password, so I entered it. It is successfully encrypting my data volume. Now, I…
Pydev
  • 43
  • 1
  • 3
2
votes
1 answer

BitLocker Group Policy Requirements

I am looking for help with creating a BitLocker policy through Group Policy. I have failed doing this myself and need help from those more experienced than I am. Server: Windows Server 2012 Clients: Windows 7 Ultimate & they are Dell Laptops (2014)…
jmoans
  • 23
  • 2
2
votes
2 answers

BitLocker - No TPM & No Flash Drive

I have done some research on using BitLocker in an environment where the machines do not have a TPM and it appears you will need to utilize a Flash Drive for it to work properly. This seems to be the case for Windows 7 and Windows 2008 R2. I have…
user2104891
  • 135
  • 2
  • 12
2
votes
1 answer

Bitlocker Drive cannot save files on this drive

I have a freshly installed Windows 2008 R2 Server with a C drive containing the operating system and d drive as a normal data drive. Ive turned on encryption on the d drive using Bitlocker. The encryption processed all the files and completed…
Peter Jamsmenson
  • 43
  • 1
  • 8
2
votes
2 answers

Windows 8.1 TPM ownership on Server 2008 R2 schema - not to spec?

My organization is running AD DS on Server 2008 R2 schema. Already a bad start, I know, but let's pretend that's impossible to change. In our default domain policy, we have the following setting enabled to require AD backup of TPM owner…
Prosun
  • 203
  • 1
  • 2
  • 9
2
votes
3 answers

Bitlocker Auto-Unlock

Can anyone comment on how the auto-unlock feature of bitlocker works. Specifically what I would like to know is how the the unlock key is encrypted and stored and when the unlock process takes place. If somehow the machine itself is compromised and…
davewolfs
  • 235
  • 3
  • 7
2
votes
1 answer

Bitlocker whole disk encryption on second (non-boot) drive

I'm working on a project where I need to encrypt only the data drive on a machine and I don't want there to be any user interaction at the console on boot. These systems will be running at remote sites and I will have to pay to have someone visit…
Christopher Stewart
  • 21
  • 2
2
votes
1 answer

Windows Bitlocker to go: How to make drive readonly for other users

I have encrypted a removable drive with Bitlocker to go. I will be giving this drive to another party and want to effectively prohibit this person's ability to write to this drive. This person should only be able to read the data after entering a…
bob123
  • 21
  • 2
1
vote
0 answers

Bitlocker sometimes shows as active instantly once policies set

So the setup is that we have a bunch of laptops for staff which connect to Windows Server (2012) AD. We have an AD group (I didn't set it up so not 100% sure of policies set) that allows Bitlocker keys to be stored for each device and forces users…
MicWit
  • 111
  • 2
1
vote
1 answer

How to protect data on Windows Server

I'm renting an unmanaged dedicated (physical) server, running Windows Server (currently 2012 R2, but it can be changed to another version of the Standard edition). I have a custom Windows service that accesses a database. I'm running the Web…
uncaged
  • 111
  • 3
1
vote
1 answer

Bitlocker error on Win7 (Domain)

I have Win7 Ultimate 32-bit running and I am trying to enable Bitlocker on the system drive. The system is running in a Win2003 Domain. I have been successful at enabling Bitlocker on other Win7 systems running in the same domain (mix of 64-bit and…
Phillip
  • 163
  • 2
  • 7
1
vote
2 answers

BitLocker with TPM: how to replace the numerical password recovery key protector with an alphanumeric password recovery key protector?

C:\Windows\system32>manage-bde -status BitLocker Drive Encryption: Configuration Tool version 10.0.17763 Copyright (C) 2013 Microsoft Corporation. All rights reserved. Disk volumes that can be protected with BitLocker Drive Encryption: Volume C:…
slantalpha
  • 305
  • 1
  • 5
  • 17
1 2 3
9 10