This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
The end-goal is a way to lock a BitLocker encrypted drive that has auto-unlock off and is secured with admin rights.
The ideal workflow:
Here are my solution attempts for Step 2
2.1. I Tried this Re-locking a drive with BitLocker - Microsoft Community with no success, admin rights required
2.2. I Tried this 4 Methods to Lock BitLocker Drives without Restart in Windows 10 option 4. with no success, admin rights required
2.3 I Created a Scheduled Task with NT-Authority\System rights that runs a script which locks the drive. To run this task I needed admin rights. The Task itself works.
2.3.1 I Tried to trigger the task by an event ID -> the task does not trigger
2.3.2 I Tried to trigger the task by the default events like Local User Logoff, Remote User Logoff and Lock the screen-> the task does not trigger
If I can provide any additional Information please do let me know, I really wish this Problem solved.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 31%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWA%3C/text%3E%3C/svg%3E)
Hi.
Back when I was young and free, I "invented" a way for needs like this. Read my article https://www.experts-exchange.com/articles/33548/How-to-empower-restricted-users-to-execute-defined-administrative-tasks.html
Since I am a Bitlocker expert as well, i can assure you that this fits your needs.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hello
Thank you for posting in Q&A forum.
Here are a few steps you can try:
1. Using Command Prompt:
• Open Command Prompt (you might need admin rights for this step).
• Type manage-bde -lock X: (replace X with the drive letter of your BitLocker drive) and press Enter.
2. Creating a Batch File:
• Open Notepad and type manage-bde -lock X: (replace X with the drive letter).
• Save the file with a .bat extension.
• Run the batch file (you might need admin rights to execute it).
3. Using a Scheduled Task:
• Create a scheduled task that runs with elevated privileges.
• Set the task to run a script that locks the BitLocker drive using the manage-bde -lock X: command (replace X with the drive letter).
• You can trigger this task manually or set it to trigger based on specific events, such as user logoff
I hope the information above is helpful.
If you have any questions or concerns, please feel free to let us know.
Best Regards,
Daisy Zhou
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.
Hi, thank you for taking your time to write an answer.
My Question is, how I can lock the drive without Admin Rights.
