In such cases, the contents of the drive can be accessed using the recovery key obtained from the recovery key identifier. The recovery key is used when, for example, a user forgets their password, or a hardware failure renders a drive inaccessible. The recovery key will be automatically generated during the BitLocker configuration process, and for domain users, it can be backed up in the AD. How to retrieve the BitLocker recovery key? Note: By enabling this option, every time a new key is generated, it will automatically be updated in the Active Directory. Enable the option 'Update recovery key to domain controller.' Navigate to the product console > BitLocker > Policy creation > Create policy.
Ensure that for all managed computers, the group policy (GPO) allows the recovery key data to be updated in the domain controller.Follow these steps to back up the recovery key data: To easily retrieve the recovery key, it is recommended that it is backed up in the domain controller. The admin can create or modify BitLocker policies using such that the recovery key information is also updated in the domain controller. Once this process is completed, the recovery key will be automatically generated. Also in the case of a hardware malfunction that has severely damaged the hard disk, the contents of the drive can still possibly be accessed by inserting the drive in another computer and entering the recovery key.Īfter a BitLocker encryption policy is deployed, the BitLocker configuration process will be initiated during PC boot. About BitLocker key recovery What is a recovery key?Ī recovery key is a 48-bit string that can be used to access the contents of a computer's encrypted hard disk if the password is forgotten by the user.
0 kommentar(er)
