| Microsoft Deployment Toolkit
Documentation Library BDERecoveryKey |
 
 |
| Microsoft Deployment Toolkit
Documentation Library BDERecoveryKey |
|
A Boolean value that indicates whether the process creates a recovery key for BitLocker. The key is used for recovering data encrypted on a BitLocker volume. This key is cryptographically equivalent to a startup key. If available, the recovery key decrypts the volume master key (VMK), which, in turn, decrypts the full volume encryption key (FVEK).
Note The recovery key is stored in the location specified in the BDEKeyLocation property.
|
Property configured by |
|
|
Property applies to |
|
|
BootStrap.ini |
|
|
LTI |
˜ |
|
CustomSettings.ini |
˜ |
|
|
|
|
MDT DB |
˜ |
|
ZTI |
|
|
Value |
Description |
|
AD |
A recovery key is created. |
|
Not specified |
A recovery key is not created. |
|
Example |
|
[Settings] Priority=Default
[Default] BDEInstallSuppress=NO BDEDriveLetter=S: BDEDriveSize=2000 BDEInstall=TPMKey BDERecoveryKey=AD BDEKeyLocation=C: |
Related Topics
| Copyright © 2012 Microsoft. All rights reserved. |
|