Store BitLocker key in AD


  • Hello,

    I'm an admin for an Office OU, which means I have delegation rights for my OU but I'm not a domain admin.

    I configured a BitLocker GP which should store the key also in AD in the computer object within my OU, but I set the GP that if the computer cannot store the key it should continue the encryption. The encrypted computer (Win7 64bit) shows no error in the event log after the encryption.

    Does it mean the computer was able to store the key in DS? I mean, would there be an entry in the event log?

    I guess with no domain admin right I cannot recover a Bitlocker key with the BitLocker Passwort recovery tool.



    Edy from Switzerland

    2013년 9월 5일 목요일 오후 5:32


모든 응답