locked
Bitlocker Password ID and Recovery Pin is not tally to AD DS RRS feed

  • Question

  • The PC is joined to a domain, Bitlocker is on but the Password ID and Recovery PIN is not tally to AD DS, why is that so ?
    Friday, June 3, 2011 6:25 AM

All replies

  • Hi,

    Please see if the configuration has meet the requirement described below:

    How do I use Active Directory for backup of BitLocker Drive Encryption recovery information?

    http://windows.microsoft.com/en-US/windows-vista/How-do-I-use-Active-Directory-for-backup-of-BitLocker-Drive-Encryption-recovery-information

    Also BitLocker Drive Encryption must have been enabled on the Windows Vista-based computers.

    http://technet.microsoft.com/en-us/library/cc766295(WS.10).aspx

    Regards,


    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”
    Wednesday, June 8, 2011 8:43 AM
    Moderator
  • Yes, our Server team had did that.

    Most of the user's Bitlocker Pin is tally, just some of the user didn't tally only.

    So we wonder where the problem is. 

    Thursday, June 9, 2011 2:22 AM
  • Hi,

    On the client side, can you tell the difference of the operation system between good user profile and problematic profile?

    If this is Server side issue, this inquiry would best be posted to Windows Server forum:
     
    http://social.technet.microsoft.com/Forums/en/category/windowsserver
     
    The reason why we recommend posting appropriately is you will get the most qualified pool of respondents, and other partners who read the forums regularly can either share their knowledge or learn from your interaction with us.  Thank you for your understanding.

    Regards,

     


    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”
    Friday, June 10, 2011 6:57 AM
    Moderator
  • Hi,

    1) I can't tell whether it is a good user profile or problematic profile. But it is only some Domain PC not able to tally. And all these PC are clone from a master image.

    2) I also can't say is it due to server side issue. BitLocker is very new to me.

    Please advise further. 

    Friday, June 10, 2011 9:31 AM
  • Thanks for replying.

    I can understand that the issue occurs to PCs that are either Windows 7 or Window Vista or Windows XP.

    And this is domain environment involved, the culprit is probably on the AD side. It is suggested to create a new case in server forum and involve their support engineer for further troubleshooting.

    http://social.technet.microsoft.com/Forums/en/category/windowsserver

    Regards,

     


    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”
    Monday, June 13, 2011 7:31 AM
    Moderator
  • Thanks for replying.

    I can understand that the issue occurs to PCs that are either Windows 7 or Window Vista or Windows XP.

    And this is domain environment involved, the culprit is probably on the AD side. It is suggested to create a new case in server forum and involve their support engineer for further troubleshooting.

    http://social.technet.microsoft.com/Forums/en/category/windowsserver

    Regards,

     


    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”

    Most of our PC are Vista, and only around 10%'s BitLocker is not tally, the rest is ok. 

    Our AD team had already did all the necessary setup from the server forum.

     

    Tuesday, June 14, 2011 12:25 AM
  • But since the 48 bit Recovery pin on the AD side is not tally and not applicable to the client's side Encrypted HDD. 

    Anyway to recover the data in the client's HDD ? 

     

    Monday, August 8, 2011 5:50 AM