none
BitLocker's recovery key changing on its own RRS feed

  • Question

  • We are having issues on a few laptops that asks for a BitLocker recovery key even though the PIN is correct. Restarting the laptop will most of the time fix the issue. It seems to come up every few restarts. One thing I also noticed is that the recovery key has changed on some laptops on its own. We did not change the PIN or messed with any BitLocker settings. Any ideas?
    Thursday, August 24, 2017 4:37 PM

All replies

  • Hi,

    If laptop has made some change recently, such as install major updates, change BIOS settings, change hardware and so on, BitLocker will enable BitLocker recovery mode, you need to enter recovery key on boot phase.

    You could refer to this blog for more information, look at solutions there.

    https://blogs.technet.microsoft.com/askcore/2010/08/04/issues-resulting-in-bitlocker-recovery-mode-and-their-resolution/

    But one thing I can confirm, BitLocker will not change recovery key spontaneously, recovery key is the final method to unlock encrypted drive, once BitLocker has been turned on, the recovery key we saved is permanent. They only scenario that recovery changes is decrypt and encrypt again, this scenario is equal to create a new BitLocker encryption, of course will create a new recovery key.

    >>One thing I also noticed is that the recovery key has changed on some laptops on its own.

    If you find that recovery key changed, how you unlock system and access to encrypted drive, where to get the new recovery key.

    Regards


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Friday, August 25, 2017 1:48 AM
    Moderator
  • We use the Microsoft BitLocker Administration and Monitoring (MBAM) service.  We just put in the identifier given to us and then the recovery key comes up and we use that. 

    We have a laptop with this problem that we just turn on and off a few times a day seeing if the recovery key changes. In the past 2 weeks, it changed 3 times. We did not decrypt it.

    We have tried docked, undocked, on the network, off the network. Doesn't seem to be something specific that triggers the recovery or the BL key change.

    We are using Windows 10 Enterprise on Dell Precision 5510

    Wednesday, August 30, 2017 7:24 PM
  • We use the Microsoft BitLocker Administration and Monitoring (MBAM) service.  We just put in the identifier given to us and then the recovery key comes up and we use that. 

    We have a laptop with this problem that we just turn on and off a few times a day seeing if the recovery key changes. In the past 2 weeks, it changed 3 times. We did not decrypt it.

    We have tried docked, undocked, on the network, off the network. Doesn't seem to be something specific that triggers the recovery or the BL key change.

    We are using Windows 10 Enterprise on Dell Precision 5510

    We had the exact same issue on two Dell desktops. The Bitlocker ID and key changed ON THEIR OWN!!
    Thursday, February 28, 2019 2:55 PM