Trending

What is a BitLocker data recovery agent?

author 0

What is a BitLocker data recovery agent?

A Data Recovery Agent, or DRA, is an account typically based on a Smart Card or Certificate which can be used for Encrypting and Decrypting a file or folder (EFS) or an entire drive (BitLocker).

How can I recover my BitLocker password in Windows 7?

If you forget your password, look for the recovery key ID in the BitLocker Encryption Options Control Panel application. Select Unlock Drive and then click I cannot remember my password. The BitLocker Encryption Options application will then display a recovery key ID that you provide to Help Desk.

Is BitLocker available in Windows 7?

BitLocker is available on: Ultimate and Enterprise editions of Windows Vista and Windows 7. Pro and Enterprise editions of Windows 8 and 8.1. Pro, Enterprise, and Education editions of Windows 10.

How do I add a recovery agent to EFS and BitLocker?

In the console tree under Local Computer Policy\Computer Configuration\Windows Settings\Security Settings\Public Key Policies, right-click BitLocker Drive Encryption, and then click Add Data Recovery Agent to start the Add Recovery Agent Wizard.

Can’t find my BitLocker recovery key?

A key may be saved to your Microsoft account (search BitLocker Recovery Keys to retrieve the key)….BitLocker recovery key storage options

  1. A key may be saved to a USB flash drive.
  2. A key may be saved as a file (Network drive or other location)
  3. A key may be physically printed.

What if I lost my BitLocker recovery key?

Reset a forgotten BitLocker PIN/password

  1. Restart your computer and press the Esc key in the BitLocker logon screen.
  2. In the BitLocker recovery screen, find the Recovery key ID.
  3. Contact your administrator and give them the Recovery key ID.
  4. In the BitLocker recovery screen, enter the recovery key.

How do I configure EFS recovery agent?

Edit the policy, and browse to Computer Configuration > Policies > Windows Settings > Security Settings > Public Key Policies > Encrypting File System. Currently we have no EFS policies defined. We can right click the Encrypting File System folder and select Create Data Recovery Agent.

Where is EFS certificate stored?

Windows will use the certificate for Encrypting File System (EFS) that is installed in the Certificates Manager ( certmgr. msc ) that usually goes under Personal → Certificates. So when there is only one EFS certificate available, you know which one is used to encrypt files.

author

Back to Top