BitLocker Recovery

BitLocker recovery is the process by which you can restore access to a BitLocker-protected drive in the event that you cannot unlock the drive normally.

In SmartEndpoint you can use the Recovery Key ID for a computer to find the Recovery Key for an encrypted client computer. With the Recovery Key, the user can unlock encrypted drives and perform recoveries.

Important - Treat the Recovery Key like a password. Only share it using trusted and confirmed channels.

To get the Recovery Key for a client computer:

  1. Open SmartEndpoint and go to Menu > Tools > BitLocker Management Recovery.

    The BitLocker Management Recovery window opens

  2. Start typing the Recovery Key ID of the client. The Recovery Key ID is a string of numbers and letters that looks like this:

    C9F38106-9E7C-46AE-8E88-E53948F11776

    After you type a few characters, the Recovery Key ID fills automatically.

  3. Optional: If you don't have the Recovery Key ID for the client, you can search for it. For this and other recovery options:

    1. Click Advanced.

      The BitLocker Management Advanced Recovery window opens.

    2. To search for the Recovery Key ID, type the Common Name of the computer, or browse for it

    3. If the disk sectors containing the encrypted keys are damaged or unreadable, you can export to external media a BitLocker Key Package to use for recovery. In Select File name and location, browse to a location. To learn how to use the Microsoft recovery tools to decrypt the disk, see the Microsoft BitLocker Recovery Guide.

    4. Click Close.

  4. In the BitLocker Management Recovery window, click Get Recovery Key.

    The Recovery Key shows. It is a string of numbers that looks like this:

    409673-073722-568381-219307-302434-260909-651475-146696

  5. On the client computer, type the Recovery Key.