Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [bitlocker]

Microsoft Windows technology for full disk(volume) encryption.

BitLocker is a full disk encryption feature that adds a layer of security to storage devices to protect data and sensitive information from falling into the wrong hands. BitLocker is available in the Windows 7 Enterprise and Ultimate Operating Systems as well as Windows Server 2008 and 2008 R2 Operating Systems.

Features include:

  • Multi-factor authentication
  • Ability to encrypt Removable storage devices
  • AES 128-bit encryption
  • Group Policy and Active Directory integration
143 questions
1
vote
2 answers

bitlocked VHDX security

I have a physical server deployed to a third party. On said server, runs a Windows 2016 Hyper-V VM. The VM's VHDX is encrypted with Bitlocker. The third party has admin access to the physical server, but no access whatsoever to the the VM. The…
resle
  • 189
  • 1
  • 1
  • 9
1
vote
0 answers

BitLocker drive encryption - Hyper-V host to guest pass-thru

Cheers folks. I have a question RE Hyper-V guest operating system accessing a physical hard drive from the host, and using BitLocker drive encryption. Currently, I have a linux VM that has a bunch of database data on it, and I'd like to pull that…
maloitpro
  • 41
  • 4
1
vote
1 answer

Bitlocker not auto-unlocking C: drive on server 2008 R2

Here's the scenario. We'got a Dell PE T110 (I know, I know), that we've enabled Bitlocker via TPM. On reboots, it asks to re-enter the bitlocker key, and we have no idea why it's not auto-unlocking. On the drive that's supposed to auto-unlock, we…
user208160
  • 21
  • 1
  • 3
1
vote
0 answers

Bitlocker on Hyper-V server

I have installed Hyper-V server on my new machine and then I added the Bitlocker function and initialized TPM. Now, I am trying to enable Bitlocker on the HDD. I need: encryption key saved on TPM recovery key saved on USB flash key will be…
Vilican
  • 129
  • 1
  • 21
1
vote
0 answers

Bitlocker AD Key Protector problems

We use Bitlocker Active Directory Key Protector to protect and auto unlock USB drives but are seeing random failures to unlock. We have two AD Groups that we use DOMAIN\BitlockerAdmin (contains system administrators) DOMAIN\BitlockerPerComputer…
Phil
  • 3,168
  • 1
  • 22
  • 29
1
vote
0 answers

BitLocker with Auto-Unlock / SQL Server Services manually

I have a Window Server 2012 R2 Server (vmware) with a SQL Server Database running on it. For security purposes we installed BitLocker on it. The objective was to encrypt our “data at rest”. The only problem so far is that each time we restart the…
user1261620
  • 111
  • 1
1
vote
0 answers

How does bitlocker drive encryption recognize and accept system changes?

I'm relatively new to bitlocker drive encryption, although I do have a decent understanding of how it works. My question here is that, if I have a system that has bitlocker drive encryption enabled and I wanted to make hardware/BIOS changes I would…
kyldu
  • 23
  • 1
  • 4
1
vote
0 answers

Group policy setting to prevent asking user which encryption mode to use

Asked a similar question previously: Group policy setting to prevent asking user where to store recovery key I'm trying to enforce the encryption mode to the new XTS-AES so that if the users computer is not running the latest Win 10 (Version 1511)…
red888
  • 4,183
  • 18
  • 64
  • 111
1
vote
1 answer

How can I automatically unlock a Bitlocker To Go hard drive if no user is logged on?

I'm using external USB hard drives to backup my server (Windows Server Backup). These drives are encrypted by Bitlocker To Go. I configured the disks to get unlocked automatically, because they are swapped every Friday by an employee. However,…
Physikbuddha
  • 291
  • 1
  • 10
1
vote
1 answer

Can't Enable Bitlocker

Why not?! How can I find out why not? I recently enabled Bitlocker without TPM in our domain controller: Update Thanks to Greg's 2nd comment I've discovered that I need a basic disk: C:\Windows\system32>bdehdcfg -driveinfo BitLocker Drive…
Ronnie Overby
  • 681
  • 2
  • 12
  • 24
1
vote
1 answer

Bitlocker without TPM on Hyper-V 2012 r2 from the command line?

I know that Bitlocker can be used from a Hyper-V Server 2012 r2 install. And I know that it can be done on a machine that lacks a TPM chip. The problem is that all of the examples I've found depend on a GUI. I don't want all of the complicated setup…
Granger
  • 1,160
  • 2
  • 10
  • 26
1
vote
1 answer

BitLocker Already Configured Issue

System Configuration: Windows Server 2008 R2 Standard Disk Configuration: RAID1 We have a newly built system that is joined to a domain and has the proper GPOs for BitLocker already setup. We install bitlocker rebooting the machine as instructed. …
sekernan
  • 51
  • 6
1
vote
1 answer

Can't store TPM information in AD

I am attempting to use GP to store TPM information in AD. I have verified that the schema contains the proper object property, and verified that the property and the ACE is present on the given computer object. I did notice that with the latest…
brandeded
  • 1,845
  • 8
  • 32
  • 50
1
vote
1 answer

BitLocker chkdsk error

Utilizing internal USB drives on the motherboard I have been attempting to implement BitLocker onto our physical servers. I have tried 6 of them, all HP servers and all of them give the same error. After encrypting to 99.9% (go figure) it pauses…
user2104891
  • 135
  • 2
  • 12
1
vote
1 answer

Reset windows 7 local admin password on encrypted drive

I have lost administrator password on a windows 7 laptop running bitlocker. I know bitlocker recovery password for this PC and can access BIOS setup. I need to reset administrator password without removing HDD from the laptop. Is there a way to do…
user167036
  • 11
  • 1
  • 1
  • 2
1 2 3
9 10