It could be more than an annoyance if you have BitLocker enabled on your Windows 7 Enterprise or Ultimate computer and you forgot to write down the recovery key – but if your computer is a member of a domain, no worries, right? That recovery information is saved in the Active Directory. The answer is “yes, but …”. There are some situations when that information doesn’t get saved to AD, including when BitLocker was enabled before the machine joined the domain or when the computer wasn’t physically connected to the network when BitLocker was enabled. If that happens, the good news is that you don’t have to decrypt and re-encrypt everything to get that information into AD. Instead, follow the instructions in this article to use the manage-bde command to save the recovery info in AD:
About The Author
Deb Shinder
Debra Littlejohn Shinder is a technology and security analyst and author specializing in identity, security and cybercrime, utilizing her past experience as a police officer and police academy/criminal justice instructor. She has written numerous books and articles for web and print publications and has been awarded the Microsoft MVP designation for fourteen years in a row.
Read Next
Netwrix Releases First Ever Hybrid Cloud Visibility Solution
Netwrix Auditor 8.0 enables security threat prevention and increases visibility into data stored both on-premises and in the cloud
How does Windows 10 intrude your privacy?
SoftOrbits is reporting on ways to stop Windows 10 spying on users.
Microsoft might add public-key pinning technology
Public key pinning can help to protect against man-in-the-middle attacks and according to recent reports, Microsoft is considering adding it to IE
Most Devs don’t use a Security Process
According to a study conducted by ComScore and referenced by Microsoft's head of Trustworthy Computing, fewer than half of developers are using a security development…