Backup recovery info in Active Directory after BitLocker is turned on

It could be more than an annoyance if you have BitLocker enabled on your Windows 7 Enterprise or Ultimate computer and you forgot to write down the recovery key – but if your computer is a member of a domain, no worries, right? That recovery information is saved in the Active Directory. The answer is “yes, but …”.  There are some situations when that information doesn’t get saved to AD, including when BitLocker was enabled before the machine joined the domain or when the computer wasn’t physically connected to the network when BitLocker was enabled. If that happens, the good news is that you don’t have to decrypt and re-encrypt everything to get that information into AD. Instead, follow the instructions in this article to use the manage-bde command to save the recovery info in AD:

http://networkedblogs.com/2DMGR

Bookmark and Share

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top