Changing Password or BIOS with BitLocker Locked Requires Recovery Key on Every Boot

The BitLocker recovery key is required on every reboot after doing one of the following with BitLocker locked:

• Setting a computer password
• Changing the BIOS settings

Affected Products:

• Dell Pro 13 Plus PB13250
• Dell Pro 13 Premium PA13250
• Dell Pro 14 Plus PB14250
• Dell Pro 14 Premium PA14250
• Dell Pro 16 Plus PB16250
• Dell Pro Max 14 MC14250
• Dell Pro Max 16 MC16250

Affected Operating System:

• Windows 11 with BitLocker

This is due to a Platform Configuration Register (PCR) mismatch in BitLocker.

The various boot paths along with additional code supports the Pre-Boot Bluetooth configuration feature. The hash values for the laptops boot sequence have changed since BitLocker was enabled. It triggers a recovery prompt because the design assumes that Bluetooth devices are needed in Graphical User Interface (UI) mode and remeasures the PCR value.

Disabling the Unified Extensible Firmware Interface (UEFI) Bluetooth Stack in the BIOS prevents repeated BitLocker recovery key prompts:

1. Press the F2 key repeatedly at the Dell splash screen to enter the BIOS setting screen.

2. Unlock the BIOS using the Admin password if the BIOS is locked.

3. Use the radio slide button to turn Advanced Setup on.

4. Go down the menu and select Connection.

5. Use the radio slide button to turn Enable UEFI Bluetooth Stack off.

6. Click Apply Changes.

7. Ensure that a tick fills the checkbox for Save as Custom User Settings? and click OK.

8. Click Exit to leave the BIOS and reboot the laptop.