HP Microsoft Windows Server 2012 manual Enabling BitLocker drive encryption

Page 29
Enabling BitLocker drive encryption

the directions to initialize the TPM. You must restart or shut down your computer for the changes to occur.

b.If TPM (Trusted Platform Module) is not available then the following error message is displayed: This device cannot use a Trusted Platform Moudule. Your administrator must set the “Allow Bitlocker without a compatible TPM” option in the “Require additional authentication at startup” policy for OS volumes.

To solve this issue:

1.Press Manual background +R to access the Run command.

2.Type MMC.

3.Click File >Add/Remove Snap-in.

4.Select Group Policy Object Editor under available snap-ins and click Add to selected snap-ins.

5.Make sure Local computer is selected and click Finish.

6.Click OK.

7.Expand Local computer policy >Computer Configuration >Administrative Templates >Windows Components>BitLocker Drive Encryption>Operating System Drives, then select the policy Require additional authentication at startup and enable it.

8.Click Apply and OK.

9.Collapse all the path.

10.Click File >Exit (save the MMC console if required).

5.Restart or Shut down your computer for the changes to take place and repeat from step 2.

6.On the BitLocker Drive Encryption page, select one of the following method to unlock your drive at startup:

Insert a USB flash drive.

Enter a Password.

7.On How do you want to back up your recovery key page, the following options appear:

Save to a USB flash drive – Saves the password in the USB flash drive.

Save to a file – saves the password in the file on a network drive or other location.

Print the recovery key – Prints the password.

Use one or more of these options to preserve the recovery password. For each option, select the option and follow the wizard steps to set the location for saving or printing the recovery password.

8.After saving the recovery password, click Next. The Encrypt the selected disk volume page appears.

IMPORTANT: The recovery password is required in the event the encrypted disk is moved to another computer, or changes are made to the system startup information. HP recommends to create additional copies of the password and store it in a secure place apart from the computer to assure access to your data. Your recovery password is required to unlock the encrypted data on the volume if the BitLocker enters into a locked state. This recovery password is unique to this particular BitLocker encryption. You cannot use it to recover encrypted data from any other BitLocker encryption session.

9.On Choose how much of your drive to encrypt page, select the disk encryption option and click Next.

10.Confirm that the Run BitLocker System check box is selected, and then click Continue.

11.Click Restart Now. The computer restarts and BitLocker verifies if the computer is BitLocker-compatible and ready for encryption.

Enabling BitLocker drive encryption

29

Page 28 Page 30
Image 29
Page 28 Page 30
Contents HP Part Number Published December Edition 5 Installation Contents6 Post-installation tasks 7 Installing Windows Server 2008 R2 wSP1 Standard, Windows ServerB Technical support A TroubleshootingC Acronyms and abbreviations IndexNavigating to documentation on the HP website 1 Navigation tipsNavigating in the HTML document Intended audience 2 NoticesIntroduction Features3 Overview Features Certificate of authenticity 4 Gathering informationInstalling the operating system 5 InstallationBefore installing the operating system 4. Click Continue 10 Installation5. Click Microsoft EULA Installing the operating system12 Installation 7. Click the Ancillary Software to check all third party Ancillary Licensed software used by HP 9. Click Continue 14 Installation10. On the OS Partition screen, choose one of the following to set the operating system partition size Administrator Password must meet the following criteria 13. Click Continue 18 Installation Signed drivers Found New Hardware Wizard Automatic configurationInstalling the operating system Altering regional settings for Windows Server 2008 R2 wSP1 Standard 6 Post-installation tasksAltering regional settings for Windows Server 2012 Standard/Windows Server 2012 R2 Standard Installing integrated Lights-Out management features Creating an additional page file Configuring the disk drivesBacking up the server Installing tape drivesEvent log errors Installing Java Virtual Machine Configuring network protocolsEnabling BitLocker drive encryption Configuring network protocols28 Post-installation tasks Enabling BitLocker drive encryption Installing Hyper-V For Windows Server 2012 Standard Installing Hyper-V For Windows Server 2008 R2 wSP1 StandardInstalling Hyper-V For Windows Server 2012 R2 Standard 30 Post-installation tasksInstalling Hyper-V For Windows Server 2012 R2 Standard R2 Media DVD 2012 R2 Standard smbios.ReflectHost = TRUE Installation on VMware Virtual machinesInstalling the HP Management Agents 8 Post-installation tasks for HP ProLiant series serversInstalling the Network Teaming and Configuration Utility Using HP Smart Update Manager HPSUM36 Post-installation tasks for HP ProLiant series servers Configuring array controllersUsing Management Agents Reinstalling the operating system A TroubleshootingBefore you contact HP B Technical supportHP contact information Customer self repairHP customer support C Acronyms and abbreviations Index
Top Page Image Contents