+ Reply to Thread
Results 1 to 2 of 2
Thread: TPM/Bitlocker
LinkBack URL
About LinkBacks-
May 25th, 2012, 08:33 AM #1Retired mostly.
- Join Date
- Oct 2001
- Location
- Finland
- Posts
- 5,150
TPM/Bitlocker
Hi.
The situation is as follows:
Domain with AD and bitlocker GPO in place. Computers backup their bitlocker recovery key to AD and it works fine.
Whenever the TPM chip gets reset (usually with motherboard change), the TPM chip needs to be reconfigured for bitlocker to work again.
I've done the following:
Replace motherboard
Start system, enter recovery password to be able to boot, get old keyID from bitlocker.
Init TPM with old recovery-password.
The question is, do I need to re-backup the key to AD (I did this, and the computer object just got another msFVE-RecoveryInformation object as child which held the same data as before)?
Or, should I backup the key to AD only if I use another password during TPM init.
Or, should I not use the old recovery key as password in the first place?
-
May 29th, 2012, 07:07 AM #2Retired mostly.
- Join Date
- Oct 2001
- Location
- Finland
- Posts
- 5,150
Nevermind.
I verified the TPM-OwnerInformation gets automatically written to AD upon init and the old RecoveryPassword is used by GPO.
Reply With QuoteThread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Similar Threads
-
Bitlocker and TPM... Isn't it totally useless?
By CoonDawg in forum Security and Privacy IssuesReplies: 5Last Post: February 23rd, 2011, 08:15 PM -
Bitlocker OFF, still causing errors.
By no1_vern in forum Applications and Operating SystemsReplies: 0Last Post: September 11th, 2008, 11:38 PM -
Bitlocker?
By J1mmy in forum General Tech DiscussionReplies: 12Last Post: November 30th, 2007, 09:53 PM
I made a peace with termites once... they cheated.
A Separate Peace in Afghanistan...