Caution:
These are just code snippets that can help in certain situations. The code snippets are only to be used by those who know exactly what they are doing.
Requirement
- Bitlocker should be activated via PowerShell
- Method: XtsAes256-bit
- Key protectors: TPM and Numeric Password (=RecoveryPassword)
- In the example below, only the system drive is discussed
Activate Bitlocker via PowerShell
„Enable-Bitlocker“ can only add one protector, here TPM Protector, recovery password will be added in the next step.
Enable-BitLocker -MountPoint $env:SystemDrive -EncryptionMethod xtsAes256 -TpmProtector -SkipHardwareTest
Recovery Password
Invoke-Expression "Manage-bde -protectors -add $env:SystemDrive -RecoveryPassword"
Stay blogged. 😎
Dein Matthias Düsi