Turning OFF Secure Boot in UEFI does not prompt BitLocker Recovery Key RRS feed

  • Question

  • I did a BitLocker/Secure Boot integrity test by turning OFF Secure Boot in the UEFI and did a reboot. No BitLocker Recovery Key Lockout prompt...This worries me now...Despite the settings in my image. As far as I know, turning OFF Secure Boot should prompt me for the BitLocker Recovery Key.

    Running Windows 10 v1803 with TPM 1.2

    Device Security indicates that Secure Boot is On in the Windows Defender Security Center

    BitLocker GPO policy is set to: Allow Secure Boot for Integrity Validation

    Monday, September 24, 2018 6:36 PM

All replies

  • If turned back ON no BitLocker Recovery prompt either. Is this really normal?
    Tuesday, September 25, 2018 4:23 AM
  • My experience is: it will only come with a prompt for the recovery key, if we have enabled preboot authentication (=set a PIN).
    Tuesday, September 25, 2018 9:56 AM
  • I read that Secure Boot is independent from BitLocker. But anyways, thank you, I will try to update it if the file even exists. Its a kind of older laptop.
    Wednesday, September 26, 2018 5:18 AM
  • You didn't respond to my comment as if it wasn't there. Is a PIN used, or not? Use a PIN, for a test, you can remove the PIN after the test in seconds.
    Wednesday, September 26, 2018 6:14 AM