• toasteecup@lemmy.world
    link
    fedilink
    English
    arrow-up
    28
    ·
    4 months ago

    This is great and a hats off to Microsoft for whipping it up so fast,that being said you’ll still need the recovery key for bitlocker which is the ultimate problem; a bitlockered crowdstriked active directory server storing all of the bitlocker recovery keys.

    • cm0002@lemmy.world
      link
      fedilink
      English
      arrow-up
      10
      arrow-down
      2
      ·
      4 months ago

      a bitlockered crowdstriked active directory server storing all of the bitlocker recovery keys.

      If you didn’t make a backup of the recovery key to the master server holding all other keys that’s on you

    • Buelldozer@lemmy.today
      link
      fedilink
      English
      arrow-up
      2
      ·
      4 months ago

      It’s a PITA but you can restore a backup from last Wednesday or earlier into a VM, boot it up, and then retrieve the key for one of your regular ADCs.

      Also, why are all your ADCs using BitLocker? I get that you want data encrypted at rest but why not use your RAID controller instead?