You need to start the operating system on Server1 as so…

You have a server named Server1 that runs Windows Server 2012 R2. Server1 has a single volume that is
encrypted by using BitLocker Drive Encryption (BitLocker).
BitLocker is configured to save encryption keys to a Trusted Platform Module (TPM). Server1 is configured to
perform a daily system image backup.
The motherboard on Server1 is upgraded.
After the upgrade, Windows Server 2012 R2 on Server1 fails to start.
You need to start the operating system on Server1 as soon as possible.
What should you do?

You have a server named Server1 that runs Windows Server 2012 R2. Server1 has a single volume that is
encrypted by using BitLocker Drive Encryption (BitLocker).
BitLocker is configured to save encryption keys to a Trusted Platform Module (TPM). Server1 is configured to
perform a daily system image backup.
The motherboard on Server1 is upgraded.
After the upgrade, Windows Server 2012 R2 on Server1 fails to start.
You need to start the operating system on Server1 as soon as possible.
What should you do?

A.
Start Server1 from the installation media. Run startrec.exe.

B.
Move the disk to a server that has a model of the old motherboard. Start the server from the installation
media. Run bcdboot.exe.

C.
Move the disk to a server that has a model of the old motherboard. Start the server. Run tpm.msc.

D.
Start Server1 from the installation media. Perform a system image recovery.

Explanation:
By moving the hard drive to server with that has a model of the old motherboard the system would be able to
start. As BitLocker was configured to save encryption keys to a Trusted Platform Module (TPM), we can use
tpm.msc to access the TPM settings.
Note: After you replaced the motherboard, you need to repopulate the TPM with new information regarding the
encryption of the hard disk.
We use these commands to repopulate the information in the TPM (without PIN):
manage-bde delete -protectors C: -type TPM
manage-bde protectors add C: -tpm
Incorrect:
Not D. After the system image recovery you would still have the new motherboard installed. The problem would
return.
BitLocker – New motherboard replacement



Leave a Reply 1

Your email address will not be published. Required fields are marked *


Appie

Appie

I think this must be D.

https://technet.microsoft.com/en-us/library/hh211414.aspx

“When drives, folders, and files are backed up by the server, an unencrypted version is saved to the server. During full system restore, this unencrypted version is copied to the computer. After a successful full system restore, you have to reactivate BitLocker on the server. “