Posts Tagged "Recovery Password"

How to recover data from a deleted, BitLocker enabled partition? – 2017 Edition

Posted by on Jan 7, 2017 in BitLocker, Featured | 0 comments

How to recover data from a deleted, BitLocker enabled partition? – 2017 Edition

In the mid of 2013 I wrote a post about recovering a deleted, BitLocker enabled Partition using Windows Server 2012. Back then the state of the art encryption method was AES 128. Now that we got Windows 10 and XTS-AES 256 encryption some people seem to have problems running through the steps of the old article. That’s why I decided to spend some time to try this on a modern OS with modern encryption. So this time, to save me some time, I used a 5GB VHD file lying on a bunch of SSDs. In real life the whole process may take several hours to several days, depending on your machine, the size and...

Read More

How to recover data from a deleted, BitLocker enabled partition?

Posted by on Jul 25, 2013 in BitLocker, Featured | 22 comments

How to recover data from a deleted, BitLocker enabled partition?

Since I ran across this problem some time ago and I couldn’t find some good information about the topic I decided to write this how to. We’ll start with a 20GB partition on one of my drives. I moved some data there, about 450MB, just so we have actually data on it. You can see information from Disk Management MMC and the folder structure in the next 2 screenshots: The next screenshot shows the BitLocker status for that partition. Please take note of the 48 digit recovery key separated by dashes into 6 groups – you’ll need that one later. In enterprise environments...

Read More

Restore deleted computer object including BitLocker recovery information

Posted by on Aug 10, 2012 in Active Directory, BitLocker, Powershell | 6 comments

Recovery of Active Directory objects became much easier with the introduction of AD recycle bin feature in Windows Server 2008 R2. Simply use the restore-adobject PowerShell cmdlet and you’re done. But what if you are using BitLocker with its keys stored in AD? You can still restore the computer object once it got deleted. But the attached msFVE-RecoveryInformation objects will not get restored automatically. This small PowerShell cmdlet will do the work for you: import-module ActiveDirectory function RestoreComputer($computername) { If ($computername.substring($computername.length -...

Read More

How to change BitLocker recovery password with vbScript?

Posted by on Oct 5, 2011 in BitLocker, Environment, VBScript, WMI | 0 comments

Related to my last post about how to change BitLocker recovery password from an elevated command prompt here is how you can achieve the same result with vbScript and WMI. This script is from Microsoft TechNet: BitLocker Drive Encryption Operations Guide: Recovering Encrypted Volumes with AD DS. ' Target drive letter strDriveLetter = "c:" ' Target computer name ' Use "." to connect to the local computer strComputerName = "." ' -------------------------------------------------------------------------------- ' Connect to the BitLocker WMI provider class '...

Read More

How to change BitLocker recovery password?

Posted by on Oct 5, 2011 in BitLocker, Environment | 0 comments

Sometimes you need to give a BitLocker recovery password to one of your customers. For example when you cannot access the computer remotely. It also happens that passwords get revealed accidentally or intentionally. While either scenario can be a security lack you may want to change the recovery password of a certain computer. To do so, you’ll need to open an elevated command prompt. With manage-bde.exe (BitLocker Drive Encryption: Configuration Tool) you can manage to change such recovery passwords. First get a list of recovery passwords for the desired partition by typing:...

Read More