Bitlocker message on Windows Server 2016

Mike Weiskopf 1 Reputation point
2021-03-11T16:39:38.247+00:00

We have a Windows Server 2016 that we had to recover from a backup. When I attempt to encrypt the server I get the following message: "The path specified in the Boot Configuration Data (BCD) for a BitLocker Drive Encryption integrity-protected application is incorrect. Please verify and correct your BCD settings and try again." I've tried several recommendations off the Internet and none of them seem to work. Please help!

Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,776 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Teemo Tang 11,371 Reputation points
    2021-03-12T02:21:32.36+00:00

    It makes sense that Secure Boot must be on for BitLocker, at least if you're using the self-encrypting drive option (hardware encryption). However, this message may appear even if Secure Boot is enabled.

    I got the same error message after a recent Server 2016 reboot. BitLocker had been working, but it suddenly lost track of the BCD info and would not resume.

    Microsoft KB929834 discusses the issue but doesn't explain how to fix it if your System volume doesn't have a drive letter.
    https://support.microsoft.com/en-us/topic/error-message-when-you-try-to-run-the-bitlocker-drive-encryption-program-cannot-run-39e3c3f5-4f5f-242c-504a-ee55e5015eee

    Finally found a Veritas article that explains how to extract the correct volume number using diskpart > list volume, then use bcdedit to fix the BCD. Based on the OP's description of his partitions, the commands would be:

    bcdedit -set {BOOTMGR} device partition=\Device\HarddiskVolume2
    bcdedit -set {MEMDIAG} device partition=\Device\HarddiskVolume2
    I blogged this with screen shots here:
    https://www.mcbsys.com/blog/2019/01/bitlocker-wizard-initialization-has-failed/

    source:
    https://superuser.com/questions/1015677/settings-for-boot-configuration-data-bcd-to-install-bitlocker-on-win-10

    -------------------------------------------------------------------------------------

    If the Answer is helpful, please click "Accept Answer" and upvote it.
    Information posted in the given link is hosted by a third party. Microsoft does not guarantee the accuracy and effectiveness of information.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments No comments