I Need To Make A Change With My IT Support! Call (225) 706-8414

Exporting BitLocker recover key from Active Directory

Solution

  1. Log on to a domain controller
  2. Launch an escalated PowerShell session
  3. Find the computer in the domain:
    > $computer = Get-ADComputer -Filter { name -eq “computername“}
  4. Export the recovery info
    > Get-ADObject -Filter { objectclass -eq “msFVE-RecoveryInformation”} -SearchBase $computer.DistinguishedName -Properties “msFVE-RecoveryPassword”
  5. The password to recover the encrypted drive is in the “msFVE-RecoveryPassword” field of the output

Comments are closed.

Concerned About Cyber Attacks?

CLICK HERE >

Want to Migrate to the Cloud?

CLICK HERE >
Office 365

Ready to Experience Microsoft Office 365?

Want the latest IT news directly in your inbox? Subscribe now!