New-CMNoOverwritePolicy

Create a policy to control computer restart performance at the risk of exposing BitLocker secrets.

Syntax

New-CMNoOverwritePolicy
   [-PolicyState <State>]
   [-DisableWildcardHandling]
   [-ForceWildcardHandling]
   [<CommonParameters>]

Description

Create a policy to control computer restart performance at the risk of exposing BitLocker secrets. BitLocker secrets include key material used to encrypt data. This policy applies only when you enable BitLocker protection.

Examples

Example 1: New default enabled policy

This example creates a policy that's not configured.

New-CMNoOverwritePolicy -PolicyState NotConfigured

Parameters

-DisableWildcardHandling

This parameter treats wildcard characters as literal character values. You can't combine it with ForceWildcardHandling.

Type:SwitchParameter
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-ForceWildcardHandling

This parameter processes wildcard characters and may lead to unexpected behavior (not recommended). You can't combine it with DisableWildcardHandling.

Type:SwitchParameter
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

-PolicyState

Use this parameter to configure the policy.

  • Enabled: If you enable this policy, memory isn't overwritten when the computer restarts. Preventing memory overwrite may improve restart performance, but it increases the risk of exposing BitLocker secrets.

  • Disabled or NotConfigured: If you disable or don't configure this policy, BitLocker secrets are removed from memory when the computer restarts.

Type:State
Accepted values:Enabled, Disabled, NotConfigured
Position:Named
Default value:None
Required:False
Accept pipeline input:False
Accept wildcard characters:False

Inputs

None

Outputs

System.Object