Freigeben über


Clear-BitLockerAutoUnlock

Clear-BitLockerAutoUnlock

Removes BitLocker automatic unlocking keys.

Syntax

Clear-BitLockerAutoUnlock [ <CommonParameters>]

Detailed Description

The Clear-BitLockerAutoUnlock cmdlet removes all automatic unlocking keys used by BitLocker Drive Encryption. BitLocker stores these keys for the fixed data drives of a system on a volume that hosts a BitLocker-enabled operating system volume so that it can automatically unlock the fixed and removable data volumes in a system. This makes it easier for users to access data volumes.

You can configure BitLocker to automatically unlock volumes that do not host an operating system. After a user unlocks the operating system volume, BitLocker uses encrypted information stored in the registry and volume metadata to unlock any data volumes that use automatic unlocking.

You must remove automatic unlocking keys before you can disable BitLocker by using the Disable-BitLocker cmdlet. You can use the Disable-BitLockerAutoUnlock cmdlet to remove keys for specific volumes that use automatic unlocking instead of all volumes.

For an overview of BitLocker, see BitLocker Drive Encryption Overview (https://technet.microsoft.com/en-us/library/cc732774.aspx) on TechNet.

Parameters

<CommonParameters>

This cmdlet supports the common parameters: -Verbose, -Debug, -ErrorAction, -ErrorVariable, -OutBuffer, and -OutVariable. For more information, see    about_CommonParameters (https://go.microsoft.com/fwlink/p/?LinkID=113216).

Inputs

The input type is the type of the objects that you can pipe to the cmdlet.

  • String

Outputs

The output type is the type of the objects that the cmdlet emits.

  • BitLockerVolume

Examples

Example 1: Clear automatic unlocking keys

This command clears all automatic unlocking keys stored on the current computer.

PS C:\> Clear-BitLockerAutoUnlock

Disable-BitLockerAutoUnlock

Enable-BitLockerAutoUnlock

Get-BitLockerVolume