To upload already encrypted drive bitlocker key to AD, you can use this PowerShell oneliner. Remember to use "run as administrator"
Backup-BitLockerKeyProtector c: ((Get-BitLockerVolume c:).KeyProtector | ? KeyProtectorType -eq RecoveryPassword).KeyProtectorId
If you already have the information in AD, then it doesn't hurt, it will not create any duplicates in AD
No comments:
Post a Comment