swapped out kb/palmtop and it triggered bitlocker

B

berbes

New Member
Reaction score
1
Location
chicago
dell inspiron 7773 with a dying KB, so we swapped out a different keyboard and now bitlocker is asking for the key. of course, no one knows it. if i put the guts back onto the original KB/palmtop, will it boot normal again, so i can disable bitlocker or find the key? i'm worried that once triggered, it will not reset itself without those 48 digits.



THANKS!

berbes
 
The key should be in the Microsoft Account which was linked to the (or a) user account on that machine.

If you don't know what the Microsoft Account is that was linked to whatever account was used to set up BitLocker, then the probability of ever getting in again is nearly nil.

All the methods for finding a Bitlocker Recovery Key are covered in the Microsoft Article: Finding your BitLocker recovery key in Windows.
As far as I'm concerned, that article is mistitled. It should be Finding your Bitlocker recovery key for Windows, as none of them are really "in Windows" in any meaningful sense of the phrase.
 
Ya gotta love someone saying, "Disable Bitlocker," as standalone advice when being able to disable BitLocker happens, in the situation at hand, to require a BitLocker Key that one does not have. Ever heard of Catch-22?

That being said, the idea of disabling BitLocker permanently if the key were to be found is my standard practice. I have seen more misery caused by BitLocker than I care to think about (a lot of it discussed on this very forum) and unless a given user has very good reason to require data encryption at rest, it's DISABLED. Very few do.

I also have very strong doubts that this repair, per se, was the trigger and that backing it out will reverse what's happened, either. This just points out, again, that Microsoft Account linked Windows User accounts are the way to go in this day and age, particularly since people almost never record their BitLocker key on paper or in a password manager.
 
I guarantee that a Bit Locker key was generated and is somewhere to be found. But you need to first understand what happens based on the OS. So what versions of Windows is it? Pro or Home? It's been a while but I seem to remember that if the machine is booting normally you should be able to disable Bit Locker without the key. So you really want to do a full decryption and then move on with the repair.
 
Markverhyden said:
I seem to remember that if the machine is booting normally you should be able to disable Bit Locker without the key.
Click to expand...

This part is definitely true. If you're able to log in to Windows normally, and with the account that "owns BitLocker" for that device, all you need to do is find BitLocker in Settings to turn it on or off, or use the manage-bde command in either Command Prompt or PowerShell. And that's because the key is already "implicitly known" (for lack of a better way of putting it) by that account itself. I've never actually supplied a BitLocker key when disabling it using manage-bde because I'm doing so from the Windows account linked to the Microsoft Account which originated BitLocker encryption for the device.

The problem arises when Windows doesn't boot normally, which appears to be the situation at hand, and that's usually at hand when any hue and cry goes up about BitLocker and lack of a key.
 
I'm not an expert but it might work how Windows activation worked back in the past. Each component was given a score or vote, with MB being the highest. Change or disconnect enough devices and you would break the chain and force activation.

Likely BL is the same, whether it be an attempt to write to the disk or suddenly a device in the chain is missing forcing recovery.
 
It’s possible that the BL key request may be something like the dirty bit flag. Doesn’t go away until you enter the key. Even if it’s back in it’s original config.
 
If BitLocker could be deactivated by making a given machine a "bitsa" (bits of this, bits of that - replacement parts) it would be utterly useless.

If you are using modern encryption on any platform, the only way to get at it (unless you're the NSA/CIA/high level law enforcement) is with the key. And even the aforementioned exceptions are not always able to do it.

Strong encryption is just that: strong.
 
britechguy said:
If BitLocker could be deactivated by making a given machine a "bitsa" (bits of this, bits of that - replacement parts) it would be utterly useless.

If you are using modern encryption on any platform, the only way to get at it (unless you're the NSA/CIA/high level law enforcement) is with the key. And even the aforementioned exceptions are not always able to do it.

Strong encryption is just that: strong.
Click to expand...
I was suggesting the opposite: that BL would lock out a user if the chain of devices or dirty flag are set as it would indicate tampering. So, working as intended.
 
berbes said:
dell inspiron 7773 with a dying KB, so we swapped out a different keyboard and now bitlocker is asking for the key. of course, no one knows it. if i put the guts back onto the original KB/palmtop, will it boot normal again, so i can disable bitlocker or find the key? i'm worried that once triggered, it will not reset itself without those 48 digits.



THANKS!

berbes
Click to expand...
It seems you lack of understanding of how BitLocker works.

Once it's triggered there is no going back.

Find the key or lose the data.
 
NviGate Systems said:
It seems you lack of understanding of how BitLocker works.
Click to expand...

Actually, I'll argue that the statements indicate the opposite. But he or she is praying for a loophole.

As you have noted, as have I and others, there isn't one. Once BitLocker has locked, if you don't have the key, you will not get back in, ever.
 
so, i guess my reral question remains, is it possible to "undo" the bitlocker triggering by reinstalling it to the original "kinda bad" KB/palm rest, then disabling bitlocker?

i ask, because i want to know if once triggered, the bitlocker will remain on until that pesky 48 digit code is entered.

thanks for this help, folks. btw, this was the most responded to site where i posted my question. THANK YOU for this help regarding my bitlocker quagmire. i'm an semi-elderly IT guy this/close to retiring!

berbes

**only posted HERE!
 
berbes said:
so, i guess my reral question remains, is it possible to "undo" the bitlocker triggering by reinstalling it to the original "kinda bad" KB/palm rest, then disabling bitlocker?

i ask, because i want to know if once triggered, the bitlocker will remain on until that pesky 48 digit code is entered.

thanks for this help, folks. btw, this was the most responded to site where i posted my question. THANK YOU for this help regarding my bitlocker quagmire. i'm an semi-elderly IT guy this/close to retiring!

berbes

**only posted HERE!
Click to expand...
There is no undo button.
 
I concur, there is likely no going back. However, I personally have seen computers give the prompt and after a few reboots stop asking for it. As for why, the only thing I could see in those cases was there was some sort of hardware issue that cleared and the bitlocker status went back to normal.

It's worth a shot if you've got everything available. If it fails again, everyone here is correct: no key = no data.
 
This entire topic is why a standard part of my setup protocol for home users and microbusinesses is disabling BitLocker/Device Encryption.

Having an unencrypted drive saves a lot more heartache than situations like this inflict.

But for those who want to have it on, you had damned well better know what Microsoft Account is affiliated with the BitLocker key for that machine and, ideally, have it recorded somewhere else that you have access to in the event of a crash and burn where you'd need it even to attempt recovery (like a password manager with its encrypted vault in the cloud or on paper locked away somewhere safe).
 
Last edited:
You must log in or register to reply here.

Similar threads

NYJimbo
HP 2000 laptop will not boot until ENTER or timeout
Replies
8
Views
3K
NYJimbo
NYJimbo
Kitten Kong
  • Sticky
Questions and Answers relating to Microsoft Licencing Guidelines.
Replies
3
Views
12K
Rosco
Rosco
geekhelp4u
SP3 Issues and Problems
Replies
9
Views
9K
geekhelp4u
geekhelp4u
Kitten Kong
Hirens 13 - Now released
2
Replies
31
Views
17K
eloria
E
M
A Serious Evasive Problem
2 3 4
Replies
72
Views
17K
PcTek9
PcTek9
Back
Top