Comment on BitLocker encryption broken in less than 43 seconds with sub-$10 Raspberry Pi Pico — key can be sniffed when using an external TPM
FYI: You can set it to require a PIN + TPM, or even just a password eg using manage-bde -on c: -password.
manage-bde -on c: -password
learn.microsoft.com/en-us/…/manage-bde-on
Thanks, that sounds really useful. I’m guessing it won’t work unless you’re local admin though.
Yep, you’ll need local admin of course.
Which kind of makes it useless in many corporate environments since the users won’t be able to set their own password.
I mean, if it’s a corporate device then it’s really a policy IT should be setting - this can be easily be done via a GPO or Intune policy, where an elevated script can prompt the end-user for a password.
tias@discuss.tchncs.de 1 year ago
Thanks, that sounds really useful. I’m guessing it won’t work unless you’re local admin though.
d3Xt3r@lemmy.nz 1 year ago
Yep, you’ll need local admin of course.
tias@discuss.tchncs.de 1 year ago
Which kind of makes it useless in many corporate environments since the users won’t be able to set their own password.
d3Xt3r@lemmy.nz 1 year ago
I mean, if it’s a corporate device then it’s really a policy IT should be setting - this can be easily be done via a GPO or Intune policy, where an elevated script can prompt the end-user for a password.