Setting up Data Recovery Agent for Bitlocker

You might have already read on TechNet and one of the other AskCore Blogson how to setup Data Recovery Agent (DRA) for BitLocker. However, how do you request a certificate from internal Certificate Authority (AD CS) to enable Data Recovery Agent (DRA). Naziya Shaik and I have written detailed instructions here and hope it is…


How to make your existing Bitlocker encrypted environment FIPS complaint

Hello, my name is Mayank Sharma and I am a Technical Advisor here at Microsoft. In this blog, I will discuss FIPS compliance with Bitlocker. Microsoft's solution for completely encrypting data inside laptops, desktops and removable drives. So let’s get started… FIPS stands for Federal Information Processing Standard and is United States Government standards that…

1

How to Cleanup TPM information from AD for Windows 8 computers

For Windows 7 machines, TPM Owner Password is stored in msTPM-OwnerInformation which is attribute of Computer object in AD. So if you delete the computer object, TPM Owner Password is also deleted. For Windows 8, TPM Owner Information is not stored directly under Computer Object. It is stored in a separate object which is linked…


MMS 2013 Hands On Labs Available

A few months ago we held the annual 2013 Microsoft Management Summit in Las Vegas. As in years past, the event sold out quickly and it was a very busy week. To everyone that attended, our sincere thanks.  As a recap, the below blog gives you the list of available sessions online to view that…


Sessions from MMS 2013 Now Available

Greetings AskCore fans.  I thought I would start creating a blog for a subset of the videos/sessions available at each of the conferences that Microsoft has throughout the year.  These sessions will be available and will deal with topics that are discussed here on the AskCore Blog.  There are numerous other sessions if you want…


Announcing public availability of MBAM Compliance Data Cleanup Tool

Hello!! My name is Himanshu Singh and I am a Support Escalation Engineer with Windows Core Team at Microsoft. I am writing today to provide a solution to a particular problem many of you have faced with Microsoft Bitlocker Administration and Monitoring (MBAM) version 1.0. There have been situation where you as a MBAM Admin…


Requirements to save Bitlocker Recovery Key to AD using MDT

My name is Naziya Shaik and I am a Support Escalation Engineer with Windows Core team @ Microsoft. I would like to share information about enabling BitLocker while deploying operating system via MDT and the group policies that are required to be configured in AD DS. If you use Microsoft Deployment Toolkit to deploy Windows…