BitLocker is a full-disk encryption feature available in Windows machines that helps protect data by encrypting the entire disk. The Active Directory (AD) BitLocker Recovery Key is a unique, 48-digit numerical password generated when BitLocker encryption is set up on a drive. It is stored in AD for centralized management and retrieval.
Why is it important to back up your BitLocker recovery keys?
The BitLocker recovery key serves as a backup option when users forget their login credentials, in case of hard drive replacement or system repairs, or if a system is compromised or infected with ransomware. It allows users to regain access to their data if they cannot unlock the drive using the standard authentication methods.
The recent CrowdStrike update that triggered a widespread blue screen error caused system failures. To recover lost data and restore normal operations, users leveraged their BitLocker recovery keys to unlock encrypted drives.
How do you backup BitLocker recovery keys using RecoveryManager Plus?
To back up BitLocker recovery keys using ManageEngine RecoveryManager Plus, start by enforcing BitLocker encryption and storing the recovery key information in AD by creating a Group Policy Object. This allows administrators to manage BitLocker settings across multiple computers efficiently. Enabling AD backup facilitates the recovery of computer objects and BitLocker recovery keys in the event of data loss or corruption.
RecoveryManager Plus backs up all domain-joined computer objects in AD. You can view the BitLocker recovery keys during the recovery process, allowing you to unlock the drive or restore the computer objects if necessary.
How to recover BitLocker recovery keys using RecoveryManager Plus
Follow the steps below to view BitLocker recovery keys during the restoration process:
Log in to RecoveryManager Plus and navigate to the Active Directory tab > Restore.
From the Domain drop-down menu, select the domain that contains the computer object whose BitLocker recovery keys you wish to restore.
Click on the Simple or Granular radio button from the Select View field to select your restoration mode.
Click the icon to filter computer objects based on the Object name criteria, then click Apply.
Click the computer object that you wish to restore. You can switch between the two views using the Restore View drop-down box. Click here to learn more about the types of views. By default, the Version view will be selected.
Select the version and BitLocker info attribute and click Restore.