![]() ![]() I did make a winPE USB with the Bitlocker tooling on it intending to at least copy the data off the machine, but I can't unlock from WinPE without a recovery key. On my own machine I'm actually able to view my recovery key using "manage-bde -protectors -get C:" but of course we never did this on any other machine. We don't have Bitlocker "recovery keys" for any of these deployed machines since nobody ever deliberately enabled Bitlocker (nobody even opened the control panel or even knows what Bitlocker is when I asked around) - I'm pretty sure you get the recovery key when you setup Bootlocker. Ok, this explains why I can't mount the drive with a standard Linux toolset.īut now I'm in a bind. The drive is in a "ready to activate" state - all of the data is actually encrypted, but the decryption key is not secured by a credential but is rather stored "in the clear". I think it does this if a modern TPM chip is available. ![]() I did some further digging and Googling and found out that on some computers, Windows automatically enables Bitlocker encryption on the boot drive, even if you don't intend to secure the drive with a password/PIN/etc. Since I happen to have the same model machine on my desk, I try booting my own machine into Linux and mounting my data drive with ntfs-3g. But after booting into Linux, I discover I cannot mount the data partition. I'll either be able to reset the password, or at very least recover the data. I could reformat the machine, but he needs his data which is on the machine. ![]() ![]() He changed it, but then promptly forgot the new password. My boss brought me his laptop and said he was asked to change his Windows password (we actually don't have any policy for password expiration, but I must have forgotten to turn off the defaults.). ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |