Forum Discussion
Bitlocker Encryption Compliance
Could you detail the settings that are required for Bitlocker full-disk encryption to be compliant with CMMC (FIPS-validated encryption)? I've seen a "FIPS-mode" setting, but heard there was more than one step to being compliant.
What Operating Systems is this available on? Win7, Win10, Server 2008, Server 2012, Server 2016?
Thanks!
Anon414 Prior to enabling BitLocker you should configure your endpoint to run in "FIPS Mode".
Be aware that this can impact some application's, such as Azure AD Connect, ability to run on systems when they are in FIPS mode.
Here are the details about what libraries are used by BitLocker in the different OS's which meet the FIPS compliance.
It is important to note that in older OS's (Pre Server 2012 and Windows 8.1) when running in FIPS mode the creation or use of a Recovery Password was not possible. However, in more recent versions BitLocker has been updated to be fully functional when running in FIPS mode.
- dmcwee
Microsoft
Anon414 Prior to enabling BitLocker you should configure your endpoint to run in "FIPS Mode".
Be aware that this can impact some application's, such as Azure AD Connect, ability to run on systems when they are in FIPS mode.
Here are the details about what libraries are used by BitLocker in the different OS's which meet the FIPS compliance.
It is important to note that in older OS's (Pre Server 2012 and Windows 8.1) when running in FIPS mode the creation or use of a Recovery Password was not possible. However, in more recent versions BitLocker has been updated to be fully functional when running in FIPS mode.
