To install BitLocker Drive Encryption using PowerShell, open a PowerShell window with Administrator rights and run the following command: Install-WindowsFeature BitLocker –IncludeAllSubFeature -IncludeManagementTools -Restart Unspecified error Accept the reboot warning by clicking Yes, and then click Install one last time. The install process will require a reboot select Restart the destination server automatically if required and click Install. Include management tools for BitLocker Drive EncryptionĬlick Next when you’re taken back to the Select Features window. When prompted, select the Include management tools (if applicable) check box and click Add Features. Install BitLocker Drive Encryption in Add Roles and Features Wizard On the Features window, click the BitLocker Drive Encryption check box. Click Next on the Before You Begin screen and Next again on the installation type, leaving Role-based or feature-based installation as the default. In the Server Manager, click Add roles and features. To install it, we’ll need to either use the GUI or run a PowerShell command. Installing BitLocker ^īitLocker Drive Encryption is not installed by default on Windows Server. ![]() ![]() BitLocker Drive Encryption is not supported for booting VHD/VHDX files, but it is supported for data drives. Without the TPM, a USB startup key or startup password is necessary for the server at every boot.įor this tutorial, the server also needs to be domain-joined because we need a way to back up the BitLocker recovery keys if the server runs into trouble and needs those keys.įor encrypting boot volumes, you’ll have to use physical hardware. TPM version 2.0 adds some additional features, such as Connected Standby, but most servers aren’t going to use that feature. As with client systems, BitLocker requires a Trusted Platform Module (TPM) version 1.2 or later.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |