Sign in

Microsoft.com

United States (English)

Brasil (Português)Česká republika (Čeština)Deutschland (Deutsch)España (Español)France (Français)Italia (Italiano)Россия (Русский)대한민국 (한국어)中华人民共和国 (中文)台灣 (中文)日本 (日本語)香港特别行政區 (中文)

Windows Server TechCenter

Windows Server TechCenter > Windows Server Forums > Security > BitLocker Recovery Password Viewer - invisible?

BitLocker Recovery Password Viewer - invisible?

Tuesday, November 03, 2009 12:46 PMDagmar Heidecker

0
Sign In to Vote
Hi,

I installed RSAT for Windows 7 and enabled the BitLocker Password Recovery Viewer in "Turn Windows Features on or off".

From my understandig I should now see the Recovery Password Viewer tabs e.g. in the properties of the computer account in AD Users and Computers. But there is not Recovery Password Viewer tab. However, there is no hint on Recovery Password Viewer installed.

I also enabled
Computer Configuration\Administrative Templates\Windows Components\BitLocker Drive Encryption\Store BitLocker recovery information in Active Directory Domain Services (Windows Server 2008 and Vista) and
Choose how BitLocker-protected operating system drives can be recovered --> enabled --> Save BitLocker recovery information to ADDS for operating system drives.

Do you have any ideals?

Kind regards,
Dagmar
- Reply
- Quote

Answers

Tuesday, November 03, 2009 1:44 PMOndrej SevecekMVP

0
Sign In to Vote
anyway you can always find the recovery passwords by using the "Advanced Features" option together with the "Users, Contacts, Group and Computers as Containers" and found in View menu in the "Active Directory Users and Computers" console. then you would expand the affected computer object and found the uniquelly named subobjects of type msFVE-RecoveryInformation.

such objects (one for every partition encrypted) have attributes such as msFVE-REcoveryPassword which contain the recovery password.

ondrej.
- Proposed As Answer byDavid Shen - MSFTMSFT, ModeratorWednesday, November 04, 2009 3:23 AM
- Marked As Answer byDavid Shen - MSFTMSFT, ModeratorThursday, November 05, 2009 3:34 AM
- Reply
- Quote

All Replies

Tuesday, November 03, 2009 1:44 PMOndrej SevecekMVP

0
Sign In to Vote
anyway you can always find the recovery passwords by using the "Advanced Features" option together with the "Users, Contacts, Group and Computers as Containers" and found in View menu in the "Active Directory Users and Computers" console. then you would expand the affected computer object and found the uniquelly named subobjects of type msFVE-RecoveryInformation.

such objects (one for every partition encrypted) have attributes such as msFVE-REcoveryPassword which contain the recovery password.

ondrej.
- Proposed As Answer byDavid Shen - MSFTMSFT, ModeratorWednesday, November 04, 2009 3:23 AM
- Marked As Answer byDavid Shen - MSFTMSFT, ModeratorThursday, November 05, 2009 3:34 AM
- Reply
- Quote
Tuesday, November 03, 2009 2:01 PMDagmar Heidecker

0
Sign In to Vote
Thank you for posting the workaround.

Dagmar
- Reply
- Quote

Need Help with Forums? (FAQ)