The rest of the process is the same as the normal BitLocker setup process. RELATED: How to Set Up BitLocker Encryption on WindowsĬontinue through the BitLocker setup process to enable BitLocker drive encryption, save a recovery key, and encrypt your drive. If you provide a USB flash drive here, you’ll need that flash drive connected to your PC each time you boot up your PC to access the files. If your PC had a TPM, you could have the computer automatically unlock the drive or use a short PIN that requires the TPM present.īecause you don’t have a TPM, you must choose to either enter a password each time your PC boots, or provide a USB flash drive. You’ll first be asked how you want to unlock your drive when your PC boots up. Head to Control Panel > System and Security > BitLocker Drive Encryption and click “Turn on BitLocker” to enable it for a drive. You can now enable, configure, and use BitLocker normally. Your change takes effect immediately-you don’t even need to reboot. You can now close the Group Policy Editor window. Group policy is configured centrally by your network administrator.Ĭlick “OK” to save your changes. If your PC is joined to a business or school domain, you can’t change the Group Policy setting yourself. You can bypass this limitation through a Group Policy change. It’s less secure, but better than nothing. You can buy and add a TPM chip to some motherboards, but if your motherboard (or laptop) doesn’t support doing so, you may want to use BitLocker without a TPM. The TPM won’t work if it’s moved to another PC’s motherboard, either. If someone tampers with the PC or removes the drive from the computer and attempts to decrypt it, it can’t be accessed without the key stored in the TPM. It’s simple, but the TPM is doing the hard work under the hood. It can automatically unlock your PC’s drive when it boots so you can sign in just by typing your Windows login password. This chip generates and stores the actual encryption keys. RELATED: What is a TPM, and Why Does Windows Need One For Disk Encryption?īitLocker normally requires a Trusted Platform Module, or TPM, on your computer’s motherboard.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |