Comment on BitLocker encryption broken in less than 43 seconds with sub-$10 Raspberry Pi Pico — key can be sniffed when using an external TPM
FYI: You can set it to require a PIN + TPM, or even just a password eg using manage-bde -on c: -password.
manage-bde -on c: -password
learn.microsoft.com/en-us/…/manage-bde-on
Thanks, that sounds really useful. I’m guessing it won’t work unless you’re local admin though.
Yep, you’ll need local admin of course.
Which kind of makes it useless in many corporate environments since the users won’t be able to set their own password.
I mean, if it’s a corporate device then it’s really a policy IT should be setting - this can be easily be done via a GPO or Intune policy, where an elevated script can prompt the end-user for a password.
tias@discuss.tchncs.de 9 months ago
Thanks, that sounds really useful. I’m guessing it won’t work unless you’re local admin though.
d3Xt3r@lemmy.nz 9 months ago
Yep, you’ll need local admin of course.
tias@discuss.tchncs.de 9 months ago
Which kind of makes it useless in many corporate environments since the users won’t be able to set their own password.
d3Xt3r@lemmy.nz 9 months ago
I mean, if it’s a corporate device then it’s really a policy IT should be setting - this can be easily be done via a GPO or Intune policy, where an elevated script can prompt the end-user for a password.