![What Is Microsoft BitLocker in [currentyear]?](https://datapins.net/wp-content/uploads/2022/09/What-is-Microsoft-BitLocker-all-you-must-know.jpg "What is Microsoft BitLocker? (all you must know)")
What is Microsoft BitLocker? (all you must know)
If you’re not a tech-savvy person, talking about a technology like BitLocker can be overwhelming, especially when you’re trying to figure out how it works.
But we’ve got you covered because this article discusses everything you need to know about Microsoft BitLocker, so keep reading!
What is Microsoft BitLocker?
Microsoft BitLocker is a data protection feature that works with your computer’s operating system and addresses threats posed by data theft or a computer that is lost, stolen, or accidentally decommissioned. This feature provides maximum protection when used with the Trusted Platform Module 1.2 or later.
If you’re interested in learning all about Microsoft BitLocker, read on for more facts!
What is Microsoft BitLocker actually?
Microsoft BitLocker works with your computer’s operating system to address the threat of data theft.
This amazing computer feature provides a lot of protection when used with the Trusted Platform Module (also known as TPM, ie 1.2 or later).
A TPM is a special hardware component that can be installed in many newer computers by computer manufacturers.
Together with BitLocker, the TPM helps protect your user data and helps ensure that your computer has not been tampered with while the system is offline.
If you have a TPM version prior to 1.2, don’t worry; you still have the opportunity to use BitLocker to encrypt Windows OS drives in your computer.
To do this, you will need to insert the USB startup key into the computer to start or resume from hibernation.
Alternatively, on Windows 8, you can use an operating system volume password to protect the operating system volume on a computer with a TPM.
BitLocker provides the option to lock the normal startup process until the user provides a PIN or inserts a removable device that contains a startup key.
With extra security, you’ll get multi-factor authentication and make sure your computer won’t start up or resume from hibernation until security is in place.
What can Microsoft BitLocker be used for?
When your computer is lost or stolen, your data is likely not secure from unauthorized access.
This can be done by running a software attack tool against it or by transferring the computer’s hard drive to another computer.
BitLocker can help protect you from unauthorized data access by enhancing file and system protection on your computer.
Additionally, BitLocker can help make data inaccessible when your computer is retired or recycled.
You can manage BitLocker using some additional management tools, including the following:
- BitLocker Recovery Password Viewer – This enables you to find and view BitLocker Drive Encryption recovery passwords that have been backed up to Active Directory Domain Services.
You will be able to use this tool to help recover data stored on drives encrypted with BitLocker.
Using this tool, you can examine the computer object’s Properties dialog box to see the corresponding BitLocker recovery password.
To be able to view these recovery passwords, you must be a domain administrator, or you must have permission from a domain administrator.
- BitLocker Driver Encryption Tool – This tool includes command line tools, manage bde and repair bde, and BitLocker cmdlets for Windows PowerShell.
All of these combinations can be used to perform any task that can be done through the BitLocker Control Panel.
These are appropriate uses for automated deployments and other scripting scenarios.
What are the system requirements to use BitLocker?
When looking into using BitLocker, you will notice the following hardware requirements:
For BitLocker to use the System Integrity Check provided by the Trusted Platform Module, the computer must have TPM 1.2 or later.
If your computer does not have a TPM, enabling BitLocker will require you to have a startup key on a removable device such as a USB flash drive.
Computers with a valid TPM must also have BIOS or UEFI firmware that is compliant with the Trusted Computing Group.
The BIOS or UEFI firmware establishes the chain of trust for pre-OS boot and needs to include support for TCG-specified static root of trust measurements.
However, computers without a TPM do not require you to have TCG-compliant firmware.
System firmware must support the USB mass storage device class, including reading small files on USB flash drives in a pre-operating system environment.
How do you use Microsoft BitLocker?
MS BitLocker is an easy-to-use software that can be used with other Windows products. You will be able to access it through your computer’s control panel.
First, go to Control Panel > System and Security > Manage Blockers.
The BitLocker window will then open; from there you’ll need to click “Turn on BitLocker” and then you’ll need administrator rights on the computer to continue.
After following the above instructions, your system will scan your computer to make sure it is compatible.
After that, you will have two options to choose from to encrypt your data.
These options include:
- Used Disk Space Only: This is a faster option, ideal for new computers or hard drives.
- Completed Disk Space: This option encrypts the entire drive. While it will take longer to complete, it is the best option for computers and hard drives that are not new.
Once the encryption is complete, you can rest assured that the data on your system and any data stored in the future will be protected.
The BitLocker decryption key is stored on the device, so it won’t change much. However, there is an option to require a password during preboot.
To learn more, you can also read our posts on Microsoft Intune, Microsoft BI, and Microsoft OneDrive.
in conclusion
Microsoft BitLocker is a feature that protects data on computers that work with your operating system and addresses the threat of data theft or exposure from your device, whether lost, stolen, or inappropriately or unintentionally deactivated .
For this feature to work, all you need is a Trusted Platform Module, also known as a TPM, which must be version 1.2 or higher.
