Directory — Find Bitlocker Key In Active

You have three primary tools to pull that golden key. Start with the simplest.

# Import the AD module Import-Module ActiveDirectory $ComputerName = "LAPTOP-JSMITH" $Computer = Get-ADComputer -Identity $ComputerName -Properties * Retrieve the BitLocker recovery password Get-ADObject -Filter {objectclass -eq 'msFVE-RecoveryInformation'} -SearchBase $Computer.DistinguishedName -Properties 'msFVE-RecoveryPassword' find bitlocker key in active directory

The IT Pro’s Lifesaver: How to Find the BitLocker Recovery Key in Active Directory (and Why You Should Be Storing Them There) You have three primary tools to pull that golden key

The message is simple but terrifying: “Enter the recovery key to get going again.” Open dsa

Next time you see that black recovery screen, don't panic. Open dsa.msc , turn on Advanced Features, and save the day.

Since Windows Server 2008 and Windows Vista, Microsoft has allowed BitLocker recovery information to be escrowed directly into AD. Here is your definitive guide to finding that key.

You can find the key without leaving your terminal. Run this from a Domain Controller or a machine with the AD module installed.