Welcome to MSDN Blogs Sign in | Join | Help

Bitlocker Recovery Password viewer thingy dealy

 

Just in case you missed it.. some coolness from the bitlocker team to make your life easier.

"The BitLocker Recovery Password Viewer lets you locate and view BitLocker recovery passwords that are stored in AD DS. You can use this tool to help recover data that is stored on a volume that has been encrypted by using BitLocker. The BitLocker Recovery Password Viewer tool is an extension for the Active Directory Users and Computers MMC snap-in. After you install this tool, you can examine a computer object's Properties dialog box to view the corresponding BitLocker recovery passwords. Additionally, you can right-click a domain container and then search for a BitLocker recovery password across all the domains in the Active Directory forest. "

edit - added the link to this post  as I forgot to do it earlier.

http://support.microsoft.com/?kbid=928202 

Spatdsg

 

 

Published Monday, January 22, 2007 4:45 PM by SpatDSG
Filed under: ,

Comment Notification

If you would like to receive an email when updates are made to this post, please register here

Subscribe to this post's comments using RSS

Comments

Friday, February 09, 2007 11:59 AM by Harold Miles

# re: Bitlocker Recovery Password viewer thingy dealy

Is there a way to configure a group of users to be recovery agents for bitlocker?  I can grant read rights but I am still unable to read the recovery password unless I am an Domain Admin.

Could it be the confidentiality flag?

Friday, February 09, 2007 8:00 PM by SpatDSG

# re: Bitlocker Recovery Password viewer thingy dealy

I haven't had a chance to test yet , but yes I believe it related to the confidential attribute. Try to grant the users who need to view the attribute’s value CONTROL_ACCESS on the specific objects they need to view. By default administrators have CONTROL_ACCESS

Friday, April 13, 2007 8:06 PM by SpatDSG

# re: Bitlocker Recovery Password viewer thingy dealy

You also need READ property

Leave a Comment

(required) 
required 
(required) 

  
Enter Code Here: Required
 
Page view tracker