This post is just a simple cheat sheet for using BitLocker on a Windows Computer.
Turn Bitlocker ON or OFF and set a pre-boot PIN code.
Start cmd with elevated permissions to run the manage-bde command.
Turn on encryption and create a recovery password:
manage-bde –on C: -recoverypassword
Store the recovery password on a safe place to prevent data loss and reboot the computer.
Check encryption status of the disks:
manage-bde –status
Ask PIN code before booting Windows
To be asked for a PIN before booting Windows we have to do more than the manage-bde command.
Start:
gpedit.msc
Go to:
Computer Configuration > Administrative Templates > Windows Components > BitLocker Drive Encryption > Operating System Drives
Edit:
Require Additional Authentication at Startup
Set (see image below):
Require Startup PIN With TPM
After that:
manage-bde -protectors -add c: -TPMAndPIN
And enter the desired PIN code.
That's it!
Turn off encryption on disk C:
manage-bde –off C:
The gpedit.msc setting:
Sources:
Congratulations @decl! You have completed some achievement on Steemit and have been rewarded with new badge(s) :
Click on any badge to view your own Board of Honor on SteemitBoard.
For more information about SteemitBoard, click here
If you no longer want to receive notifications, reply to this comment with the word
STOPDownvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit