Detect Machines that have the same bitlocker startup pin set

jaybird283 591 Reputation points
2024-01-16T20:13:18.1733333+00:00

Is there any way to detect which machines in our environment have the same bitlocker startup pin set? Maybe something that could be done with a hash value (since i doubt the pin is in any human readable format). Basically i am just wanting to make sure that some PC deployment techs didn't go rogue and deploy a bunch of machines with the same pin.

Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
3,000 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,530 questions
Microsoft Configuration Manager
{count} votes

1 answer

Sort by: Most helpful
  1. jaybird283 591 Reputation points
    2024-01-24T20:07:27.6233333+00:00

    Take a look at the article I posted above. it explains the purpose of enabling preboot authentication (pin). For what it’s worth, this is exactly what happens when you enable filevault on a modern Mac as well. They are encrypted from the factory, but turning on file vault enables a preboot screen. I often find myself having this argument with other IT people that work in less secure environments. I think if you (anyone reading this that doesn’t understand why a pin is necessary. ) take a look at the article then it will make more sense.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.