Hi, I have DC of 2003 SP2 and client of windows 7 and XP. I have planned to enable bit locker for client and want to store recovery key inside AD. Below are the steps I did ; 1. I had Modified sshema using script. 2. I had run script for Access control 3. I had enabled Store Bitlocker recovery information in Active Directory Domain Services and Turn on TPM Backup to Active Directory Domain Services policy. Now when I encrypt any drive the recovery key is not copied in AD. What would be the solution Thanks in Advance

Did you follow the steps in the following article? BitLocker Drive Encryption Configuration Guide Backing Up BitLocker and TPM Recovery Information to Active Directory How do you know that the key is not saved into AD? If there is no TPM or USB key, but you still need to decrypt, the key should be already saved onto the DC. If the key is not saved you may turn off all security applications from both client and server systems and check the result.Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.