5 Basic software procedures
5.1 Starting the maintenance task
5.1.1
Suspending BitLocker functionality
BitLocker Drive Encryption provides protection for OS and data drives by
encrypting the contents and requiring users to authenticate their credentials to
access the information. In the scenario described here, BitLocker uses the
compatible Trusted Platform Module (TPM) to detect if the computer's startup
process has been modified from its original state.
For more information on how to use BitLocker on a computer without a
compatible TPM, see the "BitLocker Drive Encryption" documentation
page at:
https://technet.microsoft.com/library/cc731549.aspx
Suspending BitLocker Drive Encryption is a temporary method for removing
BitLocker protection without decrypting the drive Windows is installed on.
Suspend BitLocker before modifying the server’
s hardware configuration or
startup files. Resume BitLocker again after the maintenance procedure is
complete.
CAUTION
●
With BitLocker features enabled, modifying the system configuration
(hardware or firmware settings) may render the system inaccessible.
The system may enter Recovery Mode and require a 48-digits
recovery password to return to normal operation. Ensure that you
suspend BitLocker drive encryption before maintaining the server.
●
When suspended, BitLocker uses a plain text key instead of the
T
rusted Platform Module (TPM) to read encrypted files. Keep in mind
that information on this drive is not secure until BitLocker has been
re-enabled.
TX1310 M5 Upgrade and Maintenance Manual 61
To Next Page
Loading...
Need help?
General