Your network contains one Active Directory forest named contoso.com.
You plan to deploy Windows 8.1 Enterprise to all client computers. As part of the deployment, the
operating system volumes of the client computers will be encrypted by using BitLocker Drive
Encryption (BitLocker).
You need to ensure that when Windows 8.1 Enterprise is deployed, each operating system volume
can be encrypted only when the recovery key information is backed up successfully to Active
Directory.
Which Group Policy setting should you configure?
A.
Store BitLocker recovery information in Active Directory Domain Services (Windows Server 2008
and Windows Vista).
B.
Choose default folder for recovery password.
C.
Configure TPM platform validation profile (Windows Vista, Windows Server 2008, Windows 7,
Windows Server 2008 R2).
D.
Choose how BitLocker-protected operating system drives can be recovered.
Explanation:
https://technet.microsoft.com/en-gb/library/ee424303(v=ws.10).aspx