What should you do?

A user reports that he is unable to start his computer. He provides the following information:
* The boot partition is encrypted by using BitLocker Drive Encryption (BitLocker).
* The user cannot locate his BitLocker recovery key.
* You need to start Windows 7 on the computer.
The solution must use the minimum amount of administrative effort. What should you do?

A user reports that he is unable to start his computer. He provides the following information:
* The boot partition is encrypted by using BitLocker Drive Encryption (BitLocker).
* The user cannot locate his BitLocker recovery key.
* You need to start Windows 7 on the computer.
The solution must use the minimum amount of administrative effort. What should you do?

A.
From the BIOS, disable the Trusted Platform Module (TPM).

B.
Start the computer from the Windows 7 installation media and select Install now.

C.
Start the computer from the Windows 7 installation media and select Repair your computer.

D.
Start the computer from the Windows 7 installation media, press SHIFT+F10, and then run CHKDSK.

Explanation:
No recovery key = no recovery. Time to install.
Any other option defeats the whole point of encryting it.
Encrypted volumes are locked when the encryption key is not available. When the operating system volume is locked, you can boot only to recovery mode. In recovery mode, you can enter the BitLocker password or you can attach the USB device that has the recovery key stored and restart the computer. Once you enter the recovery password or key, you can boot your computer normally.
The following events trigger recovery mode:
* The boot environment changes. This could include one of the boot files being modified.
* TPM is disabled or cleared.
* An attempt is made to boot without the TPM, PIN, or USB key being provided.
* You attach a BitLocker-encrypted operating system volume to another computer.



Leave a Reply 0

Your email address will not be published. Required fields are marked *