Windows 10: What happens when BitLocker encryption is turned on without adding/enabling protectors tpm,...

Discus and support What happens when BitLocker encryption is turned on without adding/enabling protectors tpm,... in AntiVirus, Firewalls and System Security to solve the problem; Running the following commands on C: volume which is an internal eMMC drive not HD/SSD if it matters in a laptop running Windows 10 Home:... Discussion in 'AntiVirus, Firewalls and System Security' started by danhar555, Mar 15, 2021.

  1. DANHAR555
    danhar555 Win User

    What happens when BitLocker encryption is turned on without adding/enabling protectors tpm,...


    [COLOR=rgba34, 34, 34, 1]Running the following commands on C: volume which is an internal eMMC drive not HD/SSD if it matters in a laptop running Windows 10 Home:[/COLOR]


    [COLOR=rgba34, 34, 34, 1] manage-bde -on c: # encrypt data[/COLOR]
    [COLOR=rgba34, 34, 34, 1] manage-bde -status c: # show status after waiting a while for encryption to finish[/COLOR]

    [COLOR=rgba34, 34, 34, 1]Output:[/COLOR]

    [COLOR=rgba34, 34, 34, 1] Volume C: [BOOTCAMP]
    [OS Volume]
    Size: 57.71 GB
    BitLocker Version: 2.0[/COLOR]
    [COLOR=rgba34, 34, 34, 1] [/COLOR][COLOR=rgba34, 34, 34, 1]Conversion Status: Fully Encrypted[/COLOR]
    [COLOR=rgba34, 34, 34, 1] [/COLOR][COLOR=rgba34, 34, 34, 1]Percentage Encrypted: 100.0%[/COLOR]
    [COLOR=rgba34, 34, 34, 1] [/COLOR][COLOR=rgba34, 34, 34, 1]Encryption Method: XTS-AES 128[/COLOR]
    [COLOR=rgba34, 34, 34, 1] [/COLOR][COLOR=rgba34, 34, 34, 1]Protection Status: Protection Off[/COLOR]
    [COLOR=rgba34, 34, 34, 1] [/COLOR][COLOR=rgba34, 34, 34, 1]Lock Status: Unlocked[/COLOR]
    [COLOR=rgba34, 34, 34, 1] [/COLOR][COLOR=rgba34, 34, 34, 1]Identification Field: Unknown[/COLOR]
    [COLOR=rgba34, 34, 34, 1] [/COLOR][COLOR=rgba34, 34, 34, 1]Key Protectors: None Found[/COLOR]



    [COLOR=rgba34, 34, 34, 1]It says that the volume is encrypted with no protectors since I haven't added them yet so the question is what's used to derive the encryption keys if no TPM, password etc are added and why is it allowed does it have any specific usage?[/COLOR]

    :)
     
    danhar555, Mar 15, 2021
    #1
  2. NAVEEN MURUGAN
    Naveen Murugan Win User

    Bitlocker TPM enabled(Not enabling PIN as a protector) prompts for recovery key during the restart

    Starting a Windows 10 with bitlocker TPM enabled(Not enabling PIN as a protector), PC asks for a recovery key during the restart.

    Behavior is random, it is not happening in all the restarts, but can say it occurs 1 of 3 restarts.

    Models: Lenovo and HP

    Is there any logs that can be checked to identify the problem?

    Is there any suggetions ?
     
    Naveen Murugan, Mar 15, 2021
    #2
  3. STEPHENMC_964
    StephenMc_964 Win User
    Unable to turn bitlocker on - TPM 2.0 is enabled but is not being recognised

    Hi,

    My Surface Pro 3 recently started asking me to enter BitLocker recovery keys on every start-up (I believe this was because on one occasion I accidentally tried booting the machine with a USB stick connected). To avoid having to enter BitLocker recovery keys
    on every startup I turned off encryption.

    I would now like to turn the encryption back on, but when I attempt to turn BitLocker back on (via Control Panel -> System and Security -> Bitlocker Drive Encryption) I get an error message that the device cannot use a Trusted Platform Module.

    Within Trusted Platform Module (TMP) on Local Computer I get a message saying that Compatible TPM cannot be found.

    I have followed various threads in this and other forums in an error to resolve this issue. I have confirmed that Trusted Platform Module 2.0 is enabled (via Device Manager and in BIOS settings). I have tried to initialise the TPM, but there is no initialization
    option showing in the 'Trusted Platform Module (TMP) on Local Computer' tool.

    Presumably since encryption was previously enabled on this machine the TPM 2.0 must have been recognisable and I have confirmed that there have been no firmware or other updates applied since the encryption was working - so I am now stumped by the fact
    that turning encryption off seems to now be preventing me from turning it back on.

    Any suggestions would be much appreciated. Thanks.
     
    StephenMc_964, Mar 15, 2021
    #3
  4. DAVIDY
    DavidY Win User

    What happens when BitLocker encryption is turned on without adding/enabling protectors tpm,...

    Bitlocker forced to auto-encrypt on Creators Update?

    It's a feature since Windows 8.1. All computers which meet certain hardware specifications (called 'InstantGo' for Windows 8.1, although I think it's less stringent for Windows 10, but it does require non-rotational/ solid state drive for the system drive) will have Device Encryption turned on on the system drive. This is all versions of Windows, even Windows 10 Home which don't have full Bitlocker.

    I believe you can turn it off in Settings - on my tablet it's in Settings under System, then About, and Device Encryption is at the bottom. (Although I'm still running an older version of Windows 10 on it - need to free up some disk space before it will upgrade - so the option may have moved.)

    Edit: or you could open Settings and type Encryption into the search box, which may find it.

    Edit2: from https://docs.microsoft.com/en-us/win...iew-windows-10
     
    DavidY, Mar 15, 2021
    #4
Thema:

What happens when BitLocker encryption is turned on without adding/enabling protectors tpm,...

Loading...

  1. What happens when BitLocker encryption is turned on without adding/enabling protectors tpm,... - Similar Threads - happens BitLocker encryption

  2. Can not enable the Bitlocker Encryption

    in Windows 10 Gaming
    Can not enable the Bitlocker Encryption: I'm not able to set up the Bitlocker Encryption in our laptop, I'm getting this issue which was shown up in System Information.Error: Reason for failed automatic device encryption: Un-allowed DMA capable bus/devices detectedError: Reasons for failed automatic device...

  3. Can't enable bitlocker encryption.

    in Windows 10 Gaming
    Can't enable bitlocker encryption.: Hello. I have a problem. I can't enable bitlocker encryption. I have windows 11 21h2 home single language, I also recently performed a local reinstall of windows....

  4. Using BitLocker without a TPM

    in AntiVirus, Firewalls and System Security
    Using BitLocker without a TPM: I have an older PC I want to protect the data on with BitLocker. It's running Windows 10 Pro, and the PC does not have a TPM.If I enable and setup BitLocker without a TPM, and set it to require a password on boot not a USB key, is the password itself encrypted? Normally the...

  5. Using BitLocker without a TPM

    in Windows 10 Gaming
    Using BitLocker without a TPM: I have an older PC I want to protect the data on with BitLocker. It's running Windows 10 Pro, and the PC does not have a TPM.If I enable and setup BitLocker without a TPM, and set it to require a password on boot not a USB key, is the password itself encrypted? Normally the...

  6. Enable Bitlocker Without TPM

    in AntiVirus, Firewalls and System Security
    Enable Bitlocker Without TPM: Hello everyone, i need to enable BitLocker on all the computers all parittions inside the company using a script or command line without enabling TPM option and backup the recovery key to AD DS. is there a way to achieve that, i have searched a lot to do this with no...

  7. Facing issue when enable bitlocker encryption

    in Windows 10 Customization
    Facing issue when enable bitlocker encryption: Hi, When I try to enable Bitlocker encryption showing error "This device can't use a Trusted Platform Module". Your administrator must set the "Allow Bitlocker without a compatible TPM". Please find the below snap. [ATTACH] My LaptopLenovo ThinkPad E460, TYPE:20ETA004SG...

  8. Enabling factory-encrypted TPM protector using manage-bde breaks boot until secure boot is...

    in AntiVirus, Firewalls and System Security
    Enabling factory-encrypted TPM protector using manage-bde breaks boot until secure boot is...: I'm investigating an issue with enabling Bitlocker protectors on a device that was encrypted from the factory. If I use the GUI to enable the protectors, it works fine, but if I use manage-bde, it will fail to find the boot device until I disable secure boot. This does not...

  9. Bitlocker TPM enabled(Not enabling PIN as a protector) prompts for recovery key during the...

    in Windows 10 BSOD Crashes and Debugging
    Bitlocker TPM enabled(Not enabling PIN as a protector) prompts for recovery key during the...: Starting a Windows 10 with bitlocker TPM enabled(Not enabling PIN as a protector), PC asks for a recovery key during the restart. Behavior is random, it is not happening in all the restarts, but can say it occurs 1 of 3 restarts. Models: Lewnovo and HP Is there any...

  10. Bitlocker without TPM help

    in AntiVirus, Firewalls and System Security
    Bitlocker without TPM help: Hi all, I've been having a bit of trouble trying to get Bitlocker working on my Dad's laptop. He recently bought a new laptop with Win 7 pro and I upgraded it to Win 10. It all went smoothly except now when I'm trying to get Bitlocker to encrypt his drive. It has an ssd...