Stack Overflow
Stack Overflow

Questions tagged [bitlocker]

full disk encryption feature included with select editions of Windows Vista and later

BitLocker (codenamed Cornerstone and formerly known as Secure Startup) is a full disk encryption feature included with select editions of Windows Vista and later. It is designed to protect data by providing encryption for entire volumes.

139 questions
0
votes
0 answers

Retrieve BitLocker recovery password from AD during MDT deployment

I have a very weird problem. I have a PowerShell script that runs during an MDT deployment task sequence. I'm using the following command to get the BitLocker recovery key so I can add it to my log $result = Get-ADComputer $NewName -Credential $cred…
Ed R.
  • 159
  • 1
  • 9
0
votes
2 answers

Creating a cmd script to save bitlocker numeric id to ad

I am trying to create a bat file to run cmd code to save bitlockers numeric id to ad the code I got that far is @echo off title bitlocker to AD. echo Bitlocker to ActiveDirectory pause powershell -Command manage-bde -protectors -get c: powershell…
Nepal Emily Asserat
  • 13
  • 2
0
votes
1 answer

Bitlocker: Encrypted all computers by cmd and GPO

I have to join a lot of computers to a new domain and I would like to enable bitlocker in all computers domain. I want to create a GPO and, when I join a new computer to the domain, bitlocker was enable automatically. The solution that I found is to…
Anxo Alonso
  • 1
  • 1
  • 2
  • 3
0
votes
1 answer

manage-bde protectionaserrorlevel not working

Heyo, I'm writing a batch file to routinely check if bitlocker is enabled. However, I realized that before I could get to any of the juicy automation parts, I'm getting an error by just running manage-bde -status c: -p (as admin). Would someone…
Spencer Lin
  • 1
0
votes
0 answers

Using a Powershell script to find a bitlocker value of TpmPin

I need a PS script that will result with True or False depending if TpmPin exists within 'KeyProtector' (see attached pic) I have tried: $res3 = Get-BitLockerVolume -MountPoint C if ($res3 -like 'Tpm'){write 'True'} else {write 'false'} but always…
Rob Kelley
  • 1
  • 1
0
votes
1 answer

Intune shows Bitlocker policy compliant when turned off

I have a machine where Bitlocker has been turned off, yet Intune still shows the 'Bitlocker required' policy as 'Compliant'. After it had been turned off, the 'Require Encryption' state changed from 'Compliant' to 'Error', yet the 'Bitlocker…
CJ Scholten
  • 623
  • 2
  • 13
  • 27
0
votes
0 answers

How to filter Bitlocker Device using Powershell

I just want to get internal Devices, which are with Bitlocker encrypted. But when I connect USB or external Hard drive, will be also read. actually, it should work just for internal devices. how could I filter ? Here, I used this Code to get the…
Alkahtani
  • 13
  • 3
0
votes
1 answer

Bitlocker And Powershell

I am in need of help regarding powershell command - Enable-Bitlocker The following code is an example: $pw = ConvertTo-SecureString "123456" -AsPlainText -Force Enable-BitLocker -MountPoint $env:SystemDrive -EncryptionMethod Aes256 -Pin $pw…
V4riableZ
  • 1
  • 2
0
votes
1 answer

Script to automatically unlock all Bitlocker drives

I'm trying to script the automatic unlocking of several drives on several PC's. I am using Bitlocker External Keys for the unlocking, not the recovery password. The command is: manage-bde -unlock h: -rk "K:\%BITLOCKER-EXTERNAL-KEY%" External Keys…
Boyd Fields
  • 31
  • 6
0
votes
0 answers

Azure Active Directory BitLocker Key doesn't appear

My laptop started to got blue screen and now I cannot make it run without the BitLocker recovery key. Looks like this key was assigned when registered the laptop to AAD but I can't find it here (I can see the BitLocker of other colleagues).…
Xurxo Garcia
  • 307
  • 1
  • 3
  • 12
0
votes
0 answers

Sorting contents with a PS script

Goal of this post: Sort Name column with csv filter -contains "-POS-" Only pull back the top Bitlocker key from AzureAD and place that one key into the bitlockerKeys column. This is a script from -…
KevinIntuneAdmin
  • 1
0
votes
0 answers

How to force Windows to detect a BitLocker volume created by writing directly to the physical sectors

I create a backup of the physical (encrypted) sectors of a BitLocker-encrypted volume (by reading them directly from \\.\PhysicalDrive0). Then I format the volume as a non-encrypted volume, thus removing the BitLocker encryption and converting the…
TheodoreJohn
  • 21
  • 3
0
votes
1 answer

How to decrypt a single file recovered from a bitlocker encrypted drive

I recovered a deleted text file from a bitlocker encrypted drive using "EaseUS Data Recovery" tool. The recovered file seems to be the raw encrypted bits. Is there a way to decrypt that file since i have the bitlocker password and recovery key? I am…
HS1
  • 3
  • 1
  • 2
0
votes
2 answers

.NET WMI - How to detect when a bitlocker device is unlocked

I have an specific application that must react (searching for a specific file on the device) each time a new USB volume is connected or disconnected to/from the system. For normal unencrypted devices I managed just creating a watcher for new USB use…
YaKs
  • 143
  • 12
0
votes
1 answer

PowerShell script that exports to CSV the computer Hostname, operating system and if Bitlocker is enabled or not

I need some help regarding a PowerShell script that exports to a CSV file the following: the computer hostname, the operating system name (windows 10 enterprise, windows 10 pro, etc). So far I managed to do all of the above using : Get-ADComputer…
Bogdan Comanescu
  • 1
  • 1
1 2 3
9 10