Home

Enable BitLocker inside VM

%3CLINGO-SUB%20id%3D%22lingo-sub-13837%22%20slang%3D%22en-US%22%3EEnable%20BitLocker%20inside%20VM%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-13837%22%20slang%3D%22en-US%22%3E%3CP%3EI%20can't%20enable%20BitLocker%20inside%20Hyper-V%20VM%20(Windows%2010%20or%20Windows%20Server%202016%20TP5)%20hosted%20in%20Windows%2010%20build%2014926%2C%20when%20I%20have%20done%2C%20appears%20the%20error%3A%20%22The%20data%20is%20invalid%22.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20the%20TPM%20chip%20ready%20to%20use%20in%20the%20VM%20configuration%20and%20the%20TPM%20Manager%20inside%20the%20VMs%20is%20ready.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20had%20a%20old%20Windows%202016%20TP5%20VM%20encrypted%20with%20BitLocker.%20I%20could%20start%20its%2C%20but%20when%20I%20decrypted%20this%2C%20I%20can't%20encrypt%20it%20again.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EDoes%20someone%20have%20the%20same%20problem%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-23712%22%20slang%3D%22en-US%22%3ERe%3A%20Enable%20BitLocker%20inside%20VM%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-23712%22%20slang%3D%22en-US%22%3E%3CP%3EWith%20the%20Windows%2010%20build%2014951%20works%20fine.%20Thank%20you!%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-15723%22%20slang%3D%22en-US%22%3ERe%3A%20Enable%20BitLocker%20inside%20VM%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-15723%22%20slang%3D%22en-US%22%3E%3CP%3EThank%20you%20Jim.%20I%20will%20try%20to%20do%20this%20test%20with%20different%20laptop%20for%20if%20it%20is%20the%20TPM%20chip.%20Now%2C%20I%20use%20a%20Hewlett%20Packard%20850%20G1%20EliteBook%20laptop%20with%20Windows%2010%20build%2014931%20160916-1700.Thank%20you%20Jim.%20I%20try%20to%20do%20this%20test%20with%20different%20laptop%20for%20if%20it%20the%20TPM%20chip.%20Actually%20I%20used%20a%20Hewlett%20Packard%20850%20G1%20EliteBook%20laptop.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-15721%22%20slang%3D%22en-US%22%3ERe%3A%20Enable%20BitLocker%20inside%20VM%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-15721%22%20slang%3D%22en-US%22%3E%3CP%3EThank%20you%20for%20your%20answer.%20But%20it%20doesn't%20think%20a%20problem%20with%20HP%20Drive%20Encryption.%20I%20use%20the%20TPM%20chip%20for%20encrypt%20my%20virtual%20machine%20over%20the%20Windows%2010%20Hyper-V.%3C%2FP%3E%3CP%3EI%20have%20encrypted%20my%20Windows%2010%20buid%20160916%20(three%20or%20four%20versions%20after%20Anniversary%20Update)%20with%20Bitlocker%20and%20works%20fine.%20I%20think%20it's%20a%20hyper-v%20problem%20or%20pass-thru%20to%20the%20TPM%20chip.%20I%20don't%20know%20that.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-15264%22%20slang%3D%22en-US%22%3ERe%3A%20Enable%20BitLocker%20inside%20VM%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-15264%22%20slang%3D%22en-US%22%3E%3CP%3EWe've%20seen%20isolated%20reports%20of%20this%20issue%20and%20are%20currently%20investigating.%20%26nbsp%3BI%20will%20provide%20an%20update%20as%20soon%20as%20I%20hear%20anything.%20If%20anyone%20else%20has%20hit%20this%20issue%20or%20has%20anything%20to%20share%2C%20it%20would%20be%20greatly%20helpful%20to%20our%20engineering%20teams.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-15205%22%20slang%3D%22en-US%22%3ERe%3A%20Enable%20BitLocker%20inside%20VM%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-15205%22%20slang%3D%22en-US%22%3E%3CP%3EI%20am%20not%20an%20expert%20in%20this%2C%20but%20read%20an%20article%20recently%20that%20described%20changes%20to%20encrypted%20drives.%20Since%20the%20Anniversary%20Update%20there%20are%20new%20signature%20verification%20requirements.%20Does%20your%20configuration%20meet%20these%20new%20requirements%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22http%3A%2F%2Fh20566.www2.hp.com%2Fhpsc%2Fdoc%2Fpublic%2Fdisplay%3FdocId%3Demr_na-c05225576%26amp%3Bhprpt_id%3DHPGL_ALERTS_1915515%26amp%3Bjumpid%3Dem_alerts_us-us_Aug16_xbu_all_all_767458_1915515_LaptopsandHybridsTabletsDesktopsWorkstationsPointofSaleSystems_critical__%2F%22%20target%3D%22_self%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3EHP%20Drive%20Encryption%20not%20supported%20past%20Anniversary%20update.%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22http%3A%2F%2Fwww.infoworld.com%2Farticle%2F3107238%2Fmicrosoft-windows%2Fmore-win-10-anniversary-update-problems-and-what-to-do-about-them.html%22%20target%3D%22_self%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3EAnniversary%20Update%20problems%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Josep Ma Solanes
Occasional Contributor

I can't enable BitLocker inside Hyper-V VM (Windows 10 or Windows Server 2016 TP5) hosted in Windows 10 build 14926, when I have done, appears the error: "The data is invalid".

 

I have the TPM chip ready to use in the VM configuration and the TPM Manager inside the VMs is ready.

 

I had a old Windows 2016 TP5 VM encrypted with BitLocker. I could start its, but when I decrypted this, I can't encrypt it again.

 

Does someone have the same problem?

5 Replies

I am not an expert in this, but read an article recently that described changes to encrypted drives. Since the Anniversary Update there are new signature verification requirements. Does your configuration meet these new requirements?

 

HP Drive Encryption not supported past Anniversary update.

 

Anniversary Update problems

We've seen isolated reports of this issue and are currently investigating.  I will provide an update as soon as I hear anything. If anyone else has hit this issue or has anything to share, it would be greatly helpful to our engineering teams.

Thank you for your answer. But it doesn't think a problem with HP Drive Encryption. I use the TPM chip for encrypt my virtual machine over the Windows 10 Hyper-V.

I have encrypted my Windows 10 buid 160916 (three or four versions after Anniversary Update) with Bitlocker and works fine. I think it's a hyper-v problem or pass-thru to the TPM chip. I don't know that.

Thank you Jim. I will try to do this test with different laptop for if it is the TPM chip. Now, I use a Hewlett Packard 850 G1 EliteBook laptop with Windows 10 build 14931 160916-1700.Thank you Jim. I try to do this test with different laptop for if it the TPM chip. Actually I used a Hewlett Packard 850 G1 EliteBook laptop.

With the Windows 10 build 14951 works fine. Thank you!

Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
35 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
9 Replies