Windows 8.1 BitLocker Questions

Hello,

I know some of these questions will be very basic but I just have a few questions I can't get my head around.

I have been tasked with creating a number of secure machines, these machines need to be encrypted and I am stuck between using BitLocker or BeCrypt.

1. Does BitLocker present the user with a pre boot authentication screen before windows starts to decrypt the disk?

2. If yes, is this set of credentials different from the windows logon/domain password? - After some reading it seems like a secure PIN is used but I l also believe that this PIN is not unique and all users would have the same PIN to unlock the disk then a different set of credentials to unlock the computer (domain login). Any clarification?

3. Multi -users, these machines will be used by different users. Each user will have their own domain credentials, does BitLocker have any constraints in this area?

If BitLocker was used it will implemented using McAfee Management of Native Encryption. 

Any help would be really appreciated :)

Regards,

Jordan



  • Edited by Jordan_ Thursday, May 07, 2015 10:44 AM
May 7th, 2015 10:43am

1 yes

2 yes, both are unrelated and no sso is possible. All users would have the same PIN, but why would that be a problem?

3 no constraints

Also be aware that you are talking about TPM-features. Without a TPM in the device, the situation would be a little different since there's no PIN possible but only a password or USB startup key.

Free Windows Admin Tool Kit Click here and download it now
May 7th, 2015 12:25pm

1 yes

2 yes, both are unrelated and no sso is possible. All users would have the same PIN, but why would that be a problem?

3 no constraints

Also be aware that you are talking about TPM-features. Without a TPM in the device, the situation would be a little different since there's no PIN possible but only a password or USB startup key.

May 7th, 2015 12:25pm

1 yes

2 yes, both are unrelated and no sso is possible. All users would have the same PIN, but why would that be a problem?

3 no constraints

Also be aware that you are talking about TPM-features. Without a TPM in the device, the situation would be a little different since there's no PIN possible but only a password or USB startup key.

Free Windows Admin Tool Kit Click here and download it now
May 7th, 2015 12:25pm

Hi Ronald,

Thank you for taking the time to reply.

The machine I'm using does have a TPM chip so shouldn't have any issues then.

Regards,

Jordan

May 8th, 2015 4:28am

Hi Jordan,

So your problems are all answered, right?

If no, give us the feedback.

Free Windows Admin Tool Kit Click here and download it now
May 11th, 2015 4:49am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics