Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Tuesday, December 3, 2013 10:57 AM
Hi!
I am searching online to look for a way to gather SCCM information for one of Our customers. They asked me if we could get information for their computers that have BitLocker enabled or in suspend status.
I've found two Things:
http://ccmexec.com/2010/03/use-dcm-to-monitor-that-all-laptops-are-encrypted-using-bitlocker/
I think these are related to SCCM 2007, but I have 2012. the sms_def.mof does not exist in the \siteserver\SMS_sitecode\inboxes\clifiles.src\hinv
There, I can only find configuration.mof
How can I gather the Bitlocker info in the least administrative way?
Freddy
All replies (7)
Tuesday, December 3, 2013 1:33 PM ✅Answered
You can enable the Bitlocker class in "Client settings"
Administration -> Client Settings -> Hardware Inventory -> Set Classes.
Check "Bitlocker" (Win32_EncryptableVolume).
Apply your settings and wait for your next hardware inventory.
Run this query to retreive the information
SELECT dbo.v_R_System.Name0, dbo.v_GS_ENCRYPTABLE_VOLUME.DriveLetter0, dbo.v_GS_ENCRYPTABLE_VOLUME.ProtectionStatus0
FROM dbo.v_GS_ENCRYPTABLE_VOLUME INNER JOIN
dbo.v_R_System ON dbo.v_GS_ENCRYPTABLE_VOLUME.ResourceID = dbo.v_R_System.ResourceID
Friday, December 6, 2013 2:57 PM ✅Answered
select
SMS_G_System_ENCRYPTABLE_VOLUME.DriveLetter,
SMS_G_System_ENCRYPTABLE_VOLUME.ProtectionStatus,
SMS_R_System.Name
from
SMS_R_System
inner join
SMS_G_System_ENCRYPTABLE_VOLUME
on
SMS_G_System_ENCRYPTABLE_VOLUME.ResourceId=SMS_R_System.ResourceId
Tuesday, December 3, 2013 12:01 PM
How about MBAM (BitLocker Administration and Monitoring) - MDOP. It can be easily integrated in CM12 environment.
http://technet.microsoft.com/en-us/library/dn237295.aspx
Tuesday, December 3, 2013 1:38 PM
Ok, I've imported the Sms_def.mof file, and enabled the Win32_Tpm class.
Now what? I should be able to see this in the Resource Explorer and get a report from that right?
Freddy
Friday, December 6, 2013 10:36 AM
Thx so much, but it seems as there is a syntax error in that query because I'm not allowed to click OK in the SCCM console. Running it on the database works fine though. Would be nice if I could get some help modifying that query so I can keep it for my collection.
Freddy
Friday, December 6, 2013 12:22 PM
The query is a SQL query. For your collection you will need a WMI Query.
Friday, December 6, 2013 2:30 PM
OK :) Any suggestions to a WMI query I can use?
Freddy