This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 99%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYW%3C/text%3E%3C/svg%3E)
Why use the command 'manage bde protectors get c:' to only obtain one BitLocker key, not all BitLocker keys?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 77%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
Please rephrase your question as it is not clear what problem you see.
Your command will list all protectors that exist on the c: drive, like
TPM
TPMandPIN
RecoveryPassword
StartupKey
...
What do you mean by "all keys"?
I can obtain the RecoveryPassword for drive C using the following command, but there is only one. Is this normal? Or is it just one group
Command: manage-bde -protectors get c:
Group? What are you talking about?
While you can set multiple recovery passwords, one would suffice, so if there's "only" one, this should be normal.
Thank you for your reply!
What I mean by group is the combination of a recover ID and a recover key
If I have set multiple recovery passwords and obtain a recover key through the above command, when I remove the corresponding hard drive and move it to another computer,can I use the command to obtain KEY to unlock the disk?
Yes, that command will display the 48-digit numerical recovery password which can be used to mount the drive in other machines. If you don't see a 48-digit string there, you need to create a recovery key protector like this now:
manage-bde -protectors -add c: -rk
thank!
Can I check if the recover key has been uploaded to Microsoft account through the command?
No you can't. You could re-upload it, but I would simply logon and check if I see it online together with the same key ID that you see with manage-bde -protectors -get c:
How can I upload it again?
I am unsure whether the following command works for a Microsoft account, since it says Azure AD. Please try it:
manage-bde -protectors -aadbackup C: -id {84E151...}
Please exchange the {ID} with your ID.
If that does not succeed, please use the GUI like shown here:
Thank you for your reply,
Can I cancel the encryption/decryption action if BitLocker is currently encrypting/decrypting?
Sure. Either using the GUI ("Turn off Bitlocker", found via the context menu option "manage bitlocker") or through manage-bde -off c: