BitLocker

How to recover data from a deleted, BitLocker enabled partition? – 2017 Edition

Posted by on Jan 7, 2017 in BitLocker, Featured | 0 comments

How to recover data from a deleted, BitLocker enabled partition? – 2017 Edition

In the mid of 2013 I wrote a post about recovering a deleted, BitLocker enabled Partition using Windows Server 2012. Back then the state of the art encryption method was AES 128. Now that we got Windows 10 and XTS-AES 256 encryption some people seem to have problems running through the steps of the old article. That’s why I decided to spend some time to try this on a modern OS with modern encryption. So this time, to save me some time, I used a 5GB VHD file lying on a bunch of SSDs. In real life the whole process may take several hours to several days, depending on your machine, the size and...

Read More

How to get some information on Bitlocker using Visual Basic and WMI?

Posted by on Nov 29, 2013 in BitLocker, VB, WMI | 0 comments

How to get some information on Bitlocker using Visual Basic and WMI?

I have been asked on my post about How to get some information on Bitlocker using VBScript and WMI? if I could provide a solution using Visual Basic. Here it is: Imports System.Management 'Need to add System.Management reference to solution Module Module1 Sub Main() Dim arEncryptionMethod = {"None", "AES 128 With Diffuser", "AES 256 With Diffuser", "AES 128", "AES 256"} Dim arProtectionStatus = {"Protection Off", "Protection On", "Protection Unknown"} Dim arConversionStatus = {"Fully Decrypted",...

Read More

How to recover data from a deleted, BitLocker enabled partition?

Posted by on Jul 25, 2013 in BitLocker, Featured | 22 comments

How to recover data from a deleted, BitLocker enabled partition?

Since I ran across this problem some time ago and I couldn’t find some good information about the topic I decided to write this how to. We’ll start with a 20GB partition on one of my drives. I moved some data there, about 450MB, just so we have actually data on it. You can see information from Disk Management MMC and the folder structure in the next 2 screenshots: The next screenshot shows the BitLocker status for that partition. Please take note of the 48 digit recovery key separated by dashes into 6 groups – you’ll need that one later. In enterprise environments...

Read More

“No such object” when configuring TPM on Windows Server 2012 or Windows 8

Posted by on Feb 13, 2013 in Active Directory, BitLocker, Group Policies | 0 comments

“No such object” when configuring TPM on Windows Server 2012 or Windows 8

Scenario: You have a Windows Server 2012 or Windows 8 computer with TPM and you store your Bitlocker recovery and TPM owner information in Active Directory. When trying to configure the TPM hardware by using tpm.msc you get this error: Turn on the TPM security hardware This computer may require you to change the state of the Trusted Platform Module (TPM) manually. To perform this action, try turning on the TPM through the BIOS or performing a firmware update. Consult the computer manufacture’s documentation for instructions. There is no such object on the server. Error code: 0x80072030...

Read More

Restore deleted computer object including BitLocker recovery information

Posted by on Aug 10, 2012 in Active Directory, BitLocker, Powershell | 6 comments

Recovery of Active Directory objects became much easier with the introduction of AD recycle bin feature in Windows Server 2008 R2. Simply use the restore-adobject PowerShell cmdlet and you’re done. But what if you are using BitLocker with its keys stored in AD? You can still restore the computer object once it got deleted. But the attached msFVE-RecoveryInformation objects will not get restored automatically. This small PowerShell cmdlet will do the work for you: import-module ActiveDirectory function RestoreComputer($computername) { If ($computername.substring($computername.length -...

Read More

How to change BitLocker recovery password with vbScript?

Posted by on Oct 5, 2011 in BitLocker, Environment, VBScript, WMI | 0 comments

Related to my last post about how to change BitLocker recovery password from an elevated command prompt here is how you can achieve the same result with vbScript and WMI. This script is from Microsoft TechNet: BitLocker Drive Encryption Operations Guide: Recovering Encrypted Volumes with AD DS. ' Target drive letter strDriveLetter = "c:" ' Target computer name ' Use "." to connect to the local computer strComputerName = "." ' -------------------------------------------------------------------------------- ' Connect to the BitLocker WMI provider class '...

Read More