Category Archives: Microsoft BitLocker (Encrypt Now)

Encrypt the OS drive and back up the recovery keys to Active Directory

Updated: Microsoft BitLocker (Encrypt Now)

Microsoft BitLocker (Encrypt Now)
Encrypt the OS drive and back up the recovery keys to Active Directory

Now retries backing up recovery keys to AD every 1 minute up to 1 hour, only when an AD domain member fails to backup recovery keys to AD with “The specified account does not exist.”
This can happen while attempting to encrypt the disk immediately after joining AD, before domain replication has completed
https://support.microsoft.com/en-us/help/2665635/the-specified-account-does-not-exist-when-you-try-to-enable-bitlocker

  • Check if this is a BitLocker-capable OS
  • Check if a TPM chip is available
  • Check if we can back up recovery keys
  • Take ownership of the TPM by setting an owner password, only for Windows 7/2008R2 and Vista/2008
  • Check for existing numerical password protectors
  • Add a numerical password protector, if one does not exist
  • Back up all recovery keys to AD
  • Turn on BitLocker and begin the drive encryption
  • Display a detailed success or failure message, except in silent mode
Continue reading Updated: Microsoft BitLocker (Encrypt Now)

Updated: Microsoft BitLocker (Encrypt Now)

Microsoft BitLocker (Encrypt Now)
Encrypt the OS drive and back up the recovery keys to Active Directory

Now displays real-time status in the MassDeploy Portal

  • Check if this is a BitLocker-capable OS
  • Check if a TPM chip is available
  • Check if we can back up recovery keys
  • Take ownership of the TPM by setting an owner password, only for Windows 7/2008R2 and Vista/2008
  • Check for existing numerical password protectors
  • Add a numerical password protector, if one does not exist
  • Back up all recovery keys to AD
  • Turn on BitLocker and begin the drive encryption
  • Display a detailed success or failure message, except in silent mode
Continue reading Updated: Microsoft BitLocker (Encrypt Now)

New: Microsoft BitLocker (Encrypt Now)

Microsoft BitLocker (Encrypt Now)
Encrypt the OS drive and back up the recovery keys to Active Directory

  • Check if this is a BitLocker-capable OS
  • Check if a TPM chip is available
  • Check if we can back up recovery keys
  • Take ownership of the TPM by setting an owner password, only for Windows 7/2008R2 and Vista/2008
  • Check for existing numerical password protectors
  • Add a numerical password protector, if one does not exist
  • Back up all recovery keys to AD
  • Turn on BitLocker and begin drive encryption
  • Display a detailed success or failure message, except in silent mode

Continue reading New: Microsoft BitLocker (Encrypt Now)