Windows 11 HOME, Bitlocker, can it be set to require PIN to unlock bitlocker

nick 1 Reputation point
2022-12-27T19:58:10.973+00:00

to all
Windows 11 HOME, and DISK ENCRYPTION. it APPEARS that it is actually BITLOCKER. See attached, in gpedit.msc, and manage-BDE, all the references are the SAME as in Windows 10 PRO bitlocker, and it appears that all the same POLICIES can be configured.

I have a windows 11 HOME new laptop. I would LIKE it to actually start like my windows 10 PRO machine, where the BITLOCKER UNLOCK SCREEN comes up when machine is turned on, to requre/enter a PIN, and it THEN goes to the normal microsoft USERS screen for username and PIN/PASSWORD.

IS THIS POSSIBLE to do; i do not want to create a BRICK out of my laptop.
this question is beyond a beginner reply, unless you have actually TRIED this yourself. I am requesting a reply from someone who has WORKED with bitlocker and might be able to answer this.
I appreciate any feedback.
thanks
nick
274317-157.jpg

Windows for business | Windows Client for IT Pros | Devices and deployment | Configure application groups
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Bagitman 596 Reputation points
    2022-12-27T21:07:35.737+00:00

    Plain and simple: there is no way to create a Bitlocker PIN protector on windows 10 Home.

    You can use Bitlocker on home without a PIN (same functionality as device encryption), you can even use it with a password, when you start bitlocker from another system (as in Windows2Go), but you cannot use it with a PIN since that will run against a wall ("not supported with this SKU").

    0 comments No comments

  2. nick 1 Reputation point
    2022-12-27T21:50:50.05+00:00

    so if i did the manage-bde, and set it for PIN-and-TPM, it would generate an error?

    I have bitlocker enabled.

    BUT, being that this is a laptop, and i might carry it out of the house (and even if IN tghe house), i want as much security on the machine as possible.

    NOW, i have been reading for windows 11 home, how the username/pin/password login security has been beefed up against brute force attacks, etc, by having 2-second delays between atempts, and also after so many failed attempts it forces a restart.
    BUT, any documentation on this is sparse. to me, bitlocker even with TPM is useless if the machine has booted up to the login screen, for username/pin/password, because then bitlocker is unlocked and data is accessible.

    BUT, per the few reveiw's i found, somebody can't BOOT from a usb stick, or other device, to have bitlocker unlock, so that is SOME protection.

    I am just looking to see how well the combination of disk-encryption-plus w11-home-plus-TPM actually protects a wayward laptop, or even a desktop.

    and thanks for reply and any other info that you may have ! :-)

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.