Forum Discussion
New devices require bitlocker recovery key after bios updates
Hi, we have enabled bitlocker encryption through our MDM Workspace One. The setting take effect properly, and we can see that the 'suspendbitlocker' key is set enabled in the Registry but still when ...
Jason_Sandys
Microsoft
MicrosoftHi prenckens,
First, I'm not sure what "the 'suspendbitlocker' key ... in the Registry" is as properly suspending BitLocker involves more than just setting a value in the registry. The most common method is using manage-bde from the command-line or Suspend-BitLocker from PowerShell.
Next, there are many different "things" that may trip a BitLocker recovery and to determine the root cause here, you must examine the BitLocker event log in detail. Doing this takes some familiarity with the internal working of TPMs including PCRs and thus this activity is typically best done by Microsoft Support so I'd encourage you to open a support case investigate further.
First, I'm not sure what "the 'suspendbitlocker' key ... in the Registry" is as properly suspending BitLocker involves more than just setting a value in the registry. The most common method is using manage-bde from the command-line or Suspend-BitLocker from PowerShell.
Next, there are many different "things" that may trip a BitLocker recovery and to determine the root cause here, you must examine the BitLocker event log in detail. Doing this takes some familiarity with the internal working of TPMs including PCRs and thus this activity is typically best done by Microsoft Support so I'd encourage you to open a support case investigate further.
Jason_Sandys thanks for the reply.