none
set "Transparent operation mode" for encryption using TPM.

    Question

  • hi,

     want to know how to set up encryption using transparent operation mode..

    kindly do help.

    appreciate.

     

    Monday, September 19, 2011 6:02 AM

Answers

  • this can only be done with TPM, and you should have TPM chip if it's a laptop, my desktop for instance don't have that chip.

    you can enable BitLocker on an operating system drive without a TPM version 1.2, if the BIOS has the ability to read from a USB flash drive in the boot environment. This is because BitLocker will not unlock the protected drive until BitLocker's own volume master key is first released by either the computer's TPM or by a USB flash drive containing the BitLocker startup key for that computer. However, computers without TPMs will not be able to use the system integrity verification that BitLocker can also provide.

    --in other word it will not be transparent because you have to put USB every boot


    Regards George www.supportweblog.com
    • Marked as answer by Cherish_HELPME Wednesday, September 21, 2011 5:58 AM
    Monday, September 19, 2011 5:29 PM
  • hi,

    "Transparent mode" means you are using your TPM chip to store keys that protect information, to do so you need to initialize it first:

    control panel > bitlocker driver encryption > TPM Administration > Initialize TPM

    the chip will provide integrity for a trusted boot pathway

     

    More about TPM:

    http://technet.microsoft.com/en-us/library/cc749022(WS.10).aspx

     

     

     

     


    Regards George www.supportweblog.com
    • Edited by George Fr Monday, September 19, 2011 8:12 AM
    • Marked as answer by Cherish_HELPME Monday, September 19, 2011 8:52 AM
    Monday, September 19, 2011 8:11 AM

All replies

  • hi,

    "Transparent mode" means you are using your TPM chip to store keys that protect information, to do so you need to initialize it first:

    control panel > bitlocker driver encryption > TPM Administration > Initialize TPM

    the chip will provide integrity for a trusted boot pathway

     

    More about TPM:

    http://technet.microsoft.com/en-us/library/cc749022(WS.10).aspx

     

     

     

     


    Regards George www.supportweblog.com
    • Edited by George Fr Monday, September 19, 2011 8:12 AM
    • Marked as answer by Cherish_HELPME Monday, September 19, 2011 8:52 AM
    Monday, September 19, 2011 8:11 AM
  • alright!~

    thanks!!! we had done it, but nt sure whether it is consider "transparent mode"!

    THANKS FOR YOUR HELP!! :)))

    Monday, September 19, 2011 8:53 AM
  • Btw can i ask is that anyway to set transparent mode on 1 user only for a desktop?

     

    Monday, September 19, 2011 9:04 AM
  • this can only be done with TPM, and you should have TPM chip if it's a laptop, my desktop for instance don't have that chip.

    you can enable BitLocker on an operating system drive without a TPM version 1.2, if the BIOS has the ability to read from a USB flash drive in the boot environment. This is because BitLocker will not unlock the protected drive until BitLocker's own volume master key is first released by either the computer's TPM or by a USB flash drive containing the BitLocker startup key for that computer. However, computers without TPMs will not be able to use the system integrity verification that BitLocker can also provide.

    --in other word it will not be transparent because you have to put USB every boot


    Regards George www.supportweblog.com
    • Marked as answer by Cherish_HELPME Wednesday, September 21, 2011 5:58 AM
    Monday, September 19, 2011 5:29 PM