Sign in
 
HomeWindows 8Windows 7Windows VistaWindows XPMDOPWindows IntuneLibraryForums
Windows Client >
Win7 causes Bitlocker to lock up when changing locale

Respondida Win7 causes Bitlocker to lock up when changing locale

  • Friday, July 13, 2012 6:43 AM
     
     
    Sign In to Vote
    0
    Hi,

    We have now rolled out approx 200 (HP) PC's with Win7x64 and Bitlocker. Unfortunately we see a few cases where the PC's boot in Bitlocker screens.
    Today we found _one_ reason we can replicate:

    Change the display language at startup (Preferred Locale) via
    Control panel / Region and Language / Administrative / Copy Settings (tick the "welcome screen and system accounts" option) and click "OK"

    This will change \windows\system32\winload.exe (BCD PreferredLokale - 0x12000005) but appearently not report back to Bitlocker (or whatever) causing a Bitlocker screen at next reboot.

    Is what we see a bug? Are we doing something wrong with our golden image?

    Thanks for your ideas!
     

All Replies

  • Monday, July 16, 2012 8:27 AM
    Moderator
     
     
    Sign In to Vote
    0

    Hi,

    I donot think it is a bug. If one of the early boot files is modified, Bitlocker will enter Bitlocker Recovery Mode. Please suspend Bitlocker before making this change.

    Juke Chou

    TechNet Community Support

     
  • Monday, July 16, 2012 1:44 PM
     
     
    Sign In to Vote
    0

    Hi Juke,

    That's not a fair reply.

    Bitlocker is a centrally managed application with automatic AD-integration whereas the locale-settings are defined per-PC and each user can change this. Region and Language settings are a standard feature from Windows that when changed willingly should not trigger a bit-locker block. Neither can we inform users of this requirement.

     
  • Tuesday, July 17, 2012 4:47 AM
    Moderator
     
     
    Sign In to Vote
    0

    Hi,

    You need to use Process Monitor to indentify whether the early boot files will be changed when modifying locale. If it is indeed changed, this is by design that Bitlocker will enter Recovery Mode after that change.

    Juke Chou

    TechNet Community Support

     
  • Tuesday, July 17, 2012 6:54 AM
     
     
    Sign In to Vote
    0
    Why do I even bother writing here? These answers are so worthless.
     
  • Tuesday, July 17, 2012 7:43 AM
    Moderator
     
     
    Sign In to Vote
    0

    Hi,

    Sorry for that, I will help you test that. If get any info, will post back.

    Juke Chou

    TechNet Community Support

     
  • Tuesday, July 17, 2012 8:18 AM
    Moderator
     
     Answered
    Sign In to Vote
    0

    Hi,

    After research, I found the following information.

    If the user wants to apply language settings to All users and system accounts. If this option is selected, it will change the local computer BCD settings (if the user-only option is selected, BCD settings are not changed). This change will result in a modification of a BCD setting to the new locale value. If you are using a TPM with BitLocker, this is interpreted as a boot attack on reboot and the computer will require that the user enter the recovery password or recovery key to start the computer.

    http://technet.microsoft.com/de-de/library/ee449438.aspx

    Juke Chou

    TechNet Community Support

     
  • Monday, December 10, 2012 5:40 PM
     
     
    Sign In to Vote
    0
    True Fact! I totally Agree