locked
Bitlocker with TPM + PIN RRS feed

  • Question

  • Hi!

    How do you enable bitlocker with TPM + PIN in SCCM task sequence? Enabling Bitlocker with TPM works fine from the standard task sequence, but how do I enable the PIN part?

    Frode.

     

    Friday, April 16, 2010 12:02 PM

Answers

  • try %SYSTEMROOT%\system32\manage-bde.exe -protectors -add c: -tp somepin

    thanks to this post

    cheers

    niall



    My step by step SCCM Guides
    windows-noob on Twitter
    • Marked as answer by Frode E Friday, April 16, 2010 12:56 PM
    Friday, April 16, 2010 12:32 PM

All replies

  • try %SYSTEMROOT%\system32\manage-bde.exe -protectors -add c: -tp somepin

    thanks to this post

    cheers

    niall



    My step by step SCCM Guides
    windows-noob on Twitter
    • Marked as answer by Frode E Friday, April 16, 2010 12:56 PM
    Friday, April 16, 2010 12:32 PM
  • Thanks!

    I'll put this in a script for the user to run once on first login.

     

     Would be nice if the standard TS had this with a dialog box for the user to enter a pin....Just a thought:-)

     

    -frode

    Friday, April 16, 2010 1:00 PM
  • Open run command task from add option

    Then in command type  %SYSTEMROOT%\system32\manage-bde.exe -protectors -add c: -tp 12345678

    Length of the pin is depend upon group policy set by u for PIN.

    You can run this task sequence after Enable Bitlocker task sequence. It worked for me well.

    Thanks

    Nilesh


    Nilesh Patil, MCSE,MCTS,MCITP,CCNA,OCA,ITIL
    Wednesday, December 1, 2010 7:52 AM
  • Then in command type  %SYSTEMROOT%\system32\manage-bde.exe -protectors -add c: -tp 12345678
    Great, but that was already mentioned by Niall more than half a year ago (see above).
    Wednesday, December 1, 2010 8:21 AM
  • Then in command type  %SYSTEMROOT%\system32\manage-bde.exe -protectors -add c: -tp 12345678

    Length of the pin is depend upon group policy set by u for PIN.

    FYI: Group Policies is suppressed (by design) when deploying Windows 7 using a Task Sequence.


    Ronni Pedersen | Configuration Manager MVP | Blog: http://ronnipedersen.com/ | Twitter @ronnipedersen
    Wednesday, December 1, 2010 12:03 PM
  • You can use a task sequence variable to set the PIN?
    Thursday, February 23, 2012 10:53 AM