Skip to main content

Bitlocker Attribute - Active Directory

manage-bde -protectors -delete C: -type RecoveryPassword manage-bde -protectors -add C: -RecoveryPassword

When a computer is decommissioned, the msFVE-RecoveryInformation objects often remain attached to the tombstoned computer account. Ensure your AD cleanup scripts remove these child objects to keep the database clean. bitlocker attribute active directory

For BitLocker recovery information to be written to Active Directory, the following must be configured: bitlocker attribute active directory

This is the easiest method. It is a Windows Feature that adds a tab directly to the ADUC console. bitlocker attribute active directory

When BitLocker is configured to back up to AD, it creates a child object under the computer object of class ms-FVE-RecoveryInformation . This child object contains several key attributes:

Find even more wedding ideas, inspo, tips, and tricks

We've got wedding planning advice on everything from save the dates to wedding cakes.

Getting engaged

Wedding planning 101

Wedding trends

Venues & vendors

Invites & paper

Registry & gifts

Parties & events

Fashion & beauty

Honeymoons

Relationship advice

News & culture

Zola behind the scenes