Bitlocker Encryption

MONICA ACEDO CID 21 Reputation points
2021-11-29T08:15:56.037+00:00

Hello,

I have many doubts about how to perform the operation, I want to implement bitlocker, I am going to encrypt the c: drive since there are no more partitions on the disks and I cannot partition them in another way.

I need that if the computers are restarted due to a software update (it does not necessarily have to be Windows) that it does not ask for a password.

I have AD with WINDOWS SERVER 2012 R2 STANDARD and WIN10 clients with TPM

Could you help me take the necessary steps?

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,548 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,680 questions
{count} votes

Accepted answer
  1. Clément BETACORNE 2,021 Reputation points
    2021-11-30T11:00:55.717+00:00

    Hello,

    You will have to configure a GPO that will not require TPM startup PIN.
    The parameter is Require additional authentication at startup and you can find more information regarding that below :
    https://learn.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-group-policy-settings#bkmk-unlockpol1

    Regards,

    0 comments No comments

0 additional answers

Sort by: Most helpful