Key Protector Explanation
Posted: Fri Jun 10, 2022 4:23 pm
Hello,
Have been evaluating the plug-in for sometime and comparing the data it collects against our current tool for managing BitLocker and we are ready to try and use this as a primary tool for managing Bitlocker at a smaller client we are on-boarding.
In doing so we are trying to see if there is anywhere listed that gives an explanation of the key protectors?
Also I see there is now a Set Auto Unlock which I assume is for drives that do not have an OS on them, to use that we need to have the drive already encrypted prior to adding that, or can we add that when we select a key protector?
Is there a specific workflow we should follow when encrypting a drive, all machines have TPM chips, should we first select TPM protector and let it encrypt and then come back and add a recovery key protector? Or does enabling encryption with TPM Protector automatically generate a recovery key?
Have been evaluating the plug-in for sometime and comparing the data it collects against our current tool for managing BitLocker and we are ready to try and use this as a primary tool for managing Bitlocker at a smaller client we are on-boarding.
In doing so we are trying to see if there is anywhere listed that gives an explanation of the key protectors?
Also I see there is now a Set Auto Unlock which I assume is for drives that do not have an OS on them, to use that we need to have the drive already encrypted prior to adding that, or can we add that when we select a key protector?
Is there a specific workflow we should follow when encrypting a drive, all machines have TPM chips, should we first select TPM protector and let it encrypt and then come back and add a recovery key protector? Or does enabling encryption with TPM Protector automatically generate a recovery key?