INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Jobs

Bitlocker To Go - AutoUnlock without Logging In

Bitlocker To Go - AutoUnlock without Logging In

(OP)
I'm currently trying to resolve an issue with our offsite backup routine and hoping someone here can shed some light on my options.

Environment
We use 3 USB external disks on our main Windows 2012 file server which runs multiple batch scripts to copy backups etc to each of the USB disks over the course of the working day.
Each night one or more disks are taken off-site and can be used to restore to an off-site DR server in the event of a critical failure.

These drives are all BitLocker To Go encrypted and set to auto-unlock when connected to the server.
However it appears that they only unlock when someone is logged in on the server.

Reading up on this I cannot find the explanation for why this behaviour exists. In comparison my Windows 10 laptop automatically mounts a Bitlocker protected USB flash drive whether a user is logged in or not.

Am I missing something obvious here, or is this behaviour by design?

If auto-unlocking is unavailable in this scenario, I'd prefer to avoid scripting using manage-bde to unlock the drives. Is there a better alternative?

*EDIT*
I should also note that this server has no TPM and fixed drives are not encrypted.

TIA,

TazUk

Always code as if the guy who ends up maintaining your code will be a violent psychopath who knows where you live.
Martin Golding

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Resources

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close