Store BitLocker keys in Active Directory

Group Policy | PowerShell | Software

18.06.21

When you encrypt drives with BitLocker it can be a nightmare to manually keep track of recovery keys, it therefore makes sense to use the built-in integration with Active Directory Domain Services (AD DS). Cyril Kardashevsky of The IT Bros has an excellent comprehensive how-to guide to configuring your AD and GPO. It doesn’t detail how to enforce BitLocker drive encryption but if you encrypt as part of your workstation setup then the keys will automatically be stored in AD for you once the GPO is in place.

Related Posts

Clean Windows install – recover original product key

PowerShell, Windows 10/11

A clean re-installation of Windows 11 failed to detect the original (OEM) digital licence on the machine. The...

Connect to admin shares on non-domain joined system

Hyper-V, Miscellaneous, Software

Needing to add a non-domain joined Hyper-V host to a Veeam B&R server gave the usual issues with credentials,...

M365 – Adding new user error – “We’re sorry, it looks like that email address is already in use. Please use a different email address.”

Microsoft 365, PowerShell

Trying to add a new user to the 365 portal returned the error that the desired email address was already in use, but...

Need IT Help?

If you need assistance please feel free to reach out to us.

Contact Support42