Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Friday, August 31, 2018 8:56 AM
The problem as above - the notebook functioning correctly and out of the blue while starting it requests the Bitlocker RecoveryKey. Never before has the bitlocker been configured (consciously by the user) on this hardware to encrypt the disk, the bitlocker has been run once, a few months earlier, solely to read data from the encrypted external disk. Trying to use that password - unfortunately, it does not give positive results.
There are no saved keys on MS accounts (which were not intentionally transmitted), nor printed or saved – as it has not been set by user. The computer has never worked in AD, so it’s not the case that the settings are given administratively "by the organization".
Checking the status of the bitlocker from the console indicates that the disk is encrypted and the password is in TPM, but for unknown reason, at the start of the computer bilocker does not read it from there.
There was no attempt to interfere with hardware, BIOS, etc. Searching the web shows that the problem has recently appeared not only i: https://www.dell.com/community/Windows-10/BitLocker-need-a-key-but-I-never-installed-it / td-p / 6019486 / page / 5 Unfortunately, the solutions provided in this forum - did not bring a solution.
Although this is a Dell forum - it can be seen that it is not dependent on the hardware, the XPS13 user writes there, my notebook is Asus. BTW the hardware manufacturer claims that it has no affect on this problem, disk encryption has not been configured by the manufacturer (the system was not installed and configured on the computer).
Any ideas what it can be and how to get around it?
Error after upgrade?
How is it possible that the disk is encrypted without the user's knowledge?
And why the password stored in the TPM (where did it come from?) Was no longer available for the bitlocker?
All replies (2)
Friday, August 31, 2018 1:12 PM
Hi.
"How is it possible that the disk is encrypted without the user's knowledge?" - under certain conditions, BL would activate and encrypt automatically. it would require someone being logged on with a Microsoft account so that it would automatically save a recovery key to https://onedrive.live.com/RecoveryKey
That someone could be the guy who setup your computer.
--
"And why the password stored in the TPM (where did it come from?)" - there is no password stored in there but a cryptographic key which the TPM has created automatically at encryption time. The TPM will release the key whenever the machine is started under pre-defined conditions. If these conditions are not met (like for example after someone altered the boot settings in the bios), the TPM will not release the key but ask for the recovery key.
Bitlocker would leave recovery mode as soon as these conditions are again met, so you might be able to undo the changes (yes, you are not aware of any, i know9, by changing the bios tback to what it was. Sometimes even docking/undocking a laptop helps.
Saturday, October 20, 2018 5:53 AM
You are a life saver! The OneDrive.live.com/RecoveryKey link got me the key i needed.