Refresh volume data

[V-NET]

We installed just the other day. When I looked at BitLocker Manager for a client I know most of the PCs already had Bitlocker, I saw 0 agents or volumes using Bitlocker, and no golden padlocks. But when I expanded each agent I saw that the ones I expected to already showed protectors on the volumes, just not the golden padlock.

Clicking [Refresh Scans] did not change this. When I check the agents in Automate I can see the scripts ran. Right-click and [Refresh Volume Data] did get that volume a golden padlock and changed the count for Agents and Volumes.

Is this normal? Is there a way to do Refresh Volume Data for all agents in one pass? Will we need to manually scan PCs volumes this way?

[adiadasman]

I installed the plugin yesterday and I am having the same symptoms. I thought that maybe I needed to let the scheduled scans run, but I can see in the agents I have checked that the scripts have run multiple times successfully, but I have no information on the main BitLocker Manager window or the volume list unless I refresh volume data manually on just one drive at a time.

[Cubert]

The refresh button and the back end scanner runs the same scripts . The only difference is that the scanner schedules script on all Windows agents that are showing online where as the Rescan Button only schedules script on the client's agents that are online.

If you are seeing volume info and key info in the selected agents view then scripts have run. We can look at the scanner logs on the Automate host to see if there are any errors in scheduling scans and we can look at agent script logs to see if there is a error during a script run.


The drive status does not turn a drive to gold unless the drive returns ProtectionStatus = "On" for that volume during the script run. If drive status is anything but this, we show a unlock lock on drive.

The script runst the following PS script.

Code: Select all

PS C:\WINDOWS\system32> 

#----------------------------------------------
# Created for the Bitlocker plugin for Automate
# Author: Shannon Anderson
# Date: 10/18/2021
#Version 1.0.0.1
#
#----------------------------------------------


$Volumes = Get-BitLockerVolume
$i = 0
$ReturnData = ""
foreach($Volume in $Volumes){
     $VolumeType = $Volume.VolumeType
     $MountPoint = $Volume.MountPoint -replace ':',''
     $DriveSize = $Volume.CapacityGB
     $VolumeStatus = $Volume.VolumeStatus
     $EncryptionPercentage = $Volume.EncryptionPercentage
     $AutoUnlockEnabled = $Volume.AutoUnlockEnabled
     $ProtectionStatus = $Volume.ProtectionStatus
     if($i -eq 0){
          $ReturnData = "('%clientid%','%computerid%','$VolumeType','$MountPoint','$DriveSize','$VolumeStatus','$EncryptionPercentage','$AutoUnlockEnabled','$ProtectionStatus',NOW())"
         $i = 1
     }else{
        $ReturnData = $ReturnData + ",('%clientid%','%computerid%','$VolumeType','$MountPoint','$DriveSize','$VolumeStatus','$EncryptionPercentage','$AutoUnlockEnabled','$ProtectionStatus',NOW())"
     }
}
Write-output $ReturnData



PS C:\WINDOWS\system32> 

This is the return data:

('%clientid%','%computerid%','OperatingSystem','C','928.5508','FullyDecrypted','0','','Off',NOW())


In this case we are not encryped on this drive.

If you can query this table (plugin_p4a_bitlocker_volumes) if you see any incorrct volume lock colors for the computerID in question.

Code: Select all

SELECT * FROM plugin_p4a_bitlocker_volumes Where computerID = '123';

See what the return of this data is?


See Protection Status column

Screenshot 2025-07-14 093140.png (7.27 KiB) Viewed 491 times

Post back your findings..