I Need To Make A Change With My IT Support! Call (225) 706-8414

Exporting BitLocker recover key from Active Directory


  1. Log on to a domain controller
  2. Launch an escalated PowerShell session
  3. Find the computer in the domain:
    > $computer = Get-ADComputer -Filter { name -eq “computername“}
  4. Export the recovery info
    > Get-ADObject -Filter { objectclass -eq “msFVE-RecoveryInformation”} -SearchBase $computer.DistinguishedName -Properties “msFVE-RecoveryPassword”
  5. The password to recover the encrypted drive is in the “msFVE-RecoveryPassword” field of the output

Comments are closed.

Concerned About Cyber Attacks?


Want to Migrate to the Cloud?

Office 365

Ready to Experience Microsoft Office 365?

Want the latest IT news directly in your inbox? Subscribe now!