$computerName = "WS-100-IT01" $computer = Get-ADComputer -Identity $computerName -Properties * $recoveryInfo = Get-ADObject -Filter objectClass -eq "msFVE-RecoveryInformation" -SearchBase $computer.DistinguishedName -Properties msFVE-RecoveryPassword $recoveryInfo | Format-Table Name, msFVE-RecoveryPassword -AutoSize
: The computer may have been encrypted before the "Store BitLocker recovery information in Active Directory Domain Services" Group Policy was enabled. Manual Backup Required get bitlocker recovery key from active directory
You will see one or more entries under “BitLocker Drive Encryption Recovery Information.” Each entry includes: get bitlocker recovery key from active directory
For those who prefer the CLI or need to automate reports, PowerShell is the fastest route. Use the following command (requires the Active Directory module): How to Query AD for BitLocker Details - Ask Garth get bitlocker recovery key from active directory