- Check Group/Local policy (Computer Configuration > Administrative Templates > Windows Components > Bitlocker Drive Encryption > Operating System Drives)
- Make sure that 'Configure TPM startup PIN' is set to 'Require Startup PIN with TPM' in 'Require additional authentication at startup'
- Suspend Bitlocker
- From CMD, run 'manage-bde -protectors -add c: -tpmandpin xxxxxx'
- Reboot and it will prompt you for the PIN you specified.
Tuesday, January 11, 2011
Enabling PIN at startup when Bitlocker is already enabled
If you have Bitlocker already installed on your drives but would now like to require a PIN at startup, follow these steps:
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment