Wednesday, January 23, 2013 7:32 PM
I have a group of laptops that get reimaged repeatedly, sometimes multiple times a month. Each time bitlocker will be reapplied, and a new key stored in the machines AD object.
Is there a limit to the amount of keys stored in the AD computer object? Is there a way of purging old keys?
Friday, January 25, 2013 8:13 AMModerator
Could you please check if the following links can help:
How to use Group Policy to save “BitLocker to Go” recovery keys in Active Directory
Backing Up BitLocker and TPM Recovery Information to AD DS
In addition, for AD related issue, I recommend to post your question on Windows Server forums for further discussion.
The reason why we recommend posting appropriately is you will get the most qualified pool of respondents, and other partners who read the forums regularly can either share their knowledge or learn from your interaction with us. Thank you for your understanding.
TechNet Community Support
- Marked As Answer by Tracy CaiMicrosoft Contingent Staff, Moderator Monday, January 28, 2013 9:11 AM
Monday, January 28, 2013 1:42 PMThanks Tracy Cai, unfortunately I was unable to find any specifications as to a limit to the amount of recovery key children to computer object in the links you provided. This issue is still unresolved.
I will crosspost in Windows Server forum.