BitLocKer with Smart Card
I own a Windows 7 Ultimate for about 2 Years.
I have almost my drives encrypted.
Now I own a smart card, my identity card (Portuguese Republic) which has a powerful certificates of autentication and digital signature.
When I try to associate BitLocker with that smart card I get the answer that Windows didin't find the apropriated certificates for BitLocker.
Why does this happen? How and Where can I get the apropiete certificate to charge it in the smart card?
Meanwhile I have read the answer posted by Novak Wu, the JanuarY 15 2010 under
a section BitLocker and Smart Card. I opened the registry editor in administration mode but I dindn't find any FVE in the pathname \HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\FVE. Only Cryptography,
PeerDist, Peernet, System Certificates, Windows and Windows NT
and in almost the subdirctories I have in the right window Name (Default) Type REG_SZ Data (value not set)
December 5th, 2011 8:15pm
Please refer to:
Using Smart Cards with BitLocker
http://technet.microsoft.com/en-us/library/dd875530(WS.10).aspxPlease remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
Free Windows Admin Tool Kit Click here and download it now
December 7th, 2011 7:24am
Bitlocker creates its own certificates based off of the machines (GUID). Basically when you are setting up bitlocker you should have one screen that says "bitlocker start up preferences" this is where you should select the "require start up key option"
and insert your USB drive to receive the start up key. After this you should be prompted to "store the Recovery key" (do not store it with the start up key, also do not store it on the computer that is being encrypted). This will allow you to recover the PC
even if you loose your USB drive with the start up key.Please remember to flag a post that helps you as "answer" so that it may help others with same problems. |
My Technet Wiki Article
December 7th, 2011 9:49am
Please refer to:
Using Smart Cards with BitLocker
http://technet.microsoft.com/en-us/library/dd875530(WS.10).aspxPlease remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
Free Windows Admin Tool Kit Click here and download it now
December 7th, 2011 11:19pm
What you told me in your answer is the way to use bitlocker encryption in drive C: without TPM, using a USB Pendrive.
But that´s not the question. What I want is to open a data drive with a smart card, C: beeing not encrypted by bitlocker.
December 9th, 2011 12:54pm