跳至主要內容
登出

歡迎來到 Dell

我的帳戶
  • 簡單快速地下訂單
  • 檢視訂單及追蹤商品運送狀態
  • 建立並存取您的產品清單
  • 使用「公司管理」來管理您的 Dell EMC 網站、產品和產品層級連絡人。
登入 建立帳戶 Premier 登入 合作夥伴計畫登入
與我們連絡

您的 Dell.com 購物車

部分文章編號可能已變更。如果這不是您要找的文章,請嘗試搜尋所有文章。搜尋文章

文章編號: 000124361

BitLocker is Prompting for a Recovery Key, and You Cannot Locate the Key

摘要: To help with locating previously stored BitLocker recovery keys, this article describes the different storage options that each Windows operating system supports.

本文可能採用自動翻譯。如果您對翻譯品質有任何寶貴意見,請使用此頁面底部的表單告訴我們,謝謝。

文章內容

症狀

BitLocker Overview

BitLocker is a Microsoft encryption product that is designed to protect user data on a computer. If a problem with BitLocker occurs, you encounter a prompt for a BitLocker recovery key. If you do not have a working recovery key for the BitLocker prompt, you are unable to access the computer.

NOTE: Because BitLocker is a Microsoft encryption security product, Dell neither stores nor possesses the ability to provide a recovery key. Dell cannot circumvent the Microsoft BitLocker Recovery Key process. Dell devices are NOT encrypted when shipped from the factory.

原因

How Was BitLocker Activated On My Device?

There are three common ways for BitLocker to start protecting your device.

  1. Your device is a modern device that meets certain requirements to automatically enable device encryption: In this case, your BitLocker recovery key is automatically saved to your Microsoft account before protection is activated.
  2. An owner or administrator of your device activated BitLocker protection (also called device encryption on some devices) through the Settings app or Control Panel: In this case the user activating BitLocker either selected where to save the key or (in the case of device encryption) it was automatically saved to their Microsoft account.
  3. A work or school organization that is managing your device (currently or in the past) activated BitLocker protection on your device: In this case, the organization may have your BitLocker recovery key.

Beginning in Windows 8.1, Windows automatically enables BitLocker Device Encryption on devices that support Modern Standby. With Windows 10 and 11, Microsoft offers BitLocker Device Encryption support on a broader range of devices. These include those that support Modern Standby, and devices that run Windows 10 Home Edition or Windows 11. All computers that Dell currently ships are Modern Standby compliant and the above applies. A registry key that Dell leaves in a neutral state controls this behavior, neither prohibiting nor enforcing encryption. Windows interprets this as approval to encrypt.

BitLocker encryption is often intentionally activated by or on behalf of a user with full administrative access to your device. This user could be you, another user, or an organization managing your device. Dell does not enable BitLocker on any device, BitLocker is enabled by the user during setup or domain configuration by an administrator.

A BIOS update can trigger a BitLocker Recovery event as the PCR banks between the time Windows runs, and the time the BIOS is flashed, changes. However, all Dell BIOS updates suspend BitLocker before the flash so a BitLocker Recovery event cannot occur as a result of updating the firmware. If the computer goes into recovery mode, it is likely due to an external drive being connected as it changes the boot drive enumeration. Users can configure this in the BIOS. Outside of this specific scenario, there is not an event that triggers BitLocker encryption unexpectedly. The BitLocker encryption process happens in the background and often goes unnoticed by users until a Recovery event occurs.

The BitLocker setup process enforces the creation of a recovery key at the time of activation. If you are unable to locate a required BitLocker recovery key and are unable to revert a configuration change that might have caused it to be required, you must reset your device using one of the Windows 10 recovery options. Resetting your device removes all your files.

解析度

BitLocker Recovery Key Storage Options

Recovery keys may be saved in several ways depending on the version of Windows installed. The following list describes the supported options to save a key per each operating system version and may aid in locating a saved key (if present):

For Windows 8 or Windows 8.1:

  • A key may be saved to your Microsoft Account by default (Access your Microsoft account from a different computer to retrieve the key).
  • A key may be manually saved to a USB flash drive.
  • A key may be manually saved as a file (Network drive or other location).
  • A key may be physically printed manually.

For Windows 10:

  • A key may be saved to your Microsoft Account by default (search BitLocker Recovery Keys to retrieve the key).
    • If you have a modern device that supports automatic device encryption, the recovery key will most likely be in your Microsoft account. For more, see Device encryption in Windows 10 This hyperlink is taking you to a website outside of Dell Technologies.
    • If the device was set up or BitLocker protection was activated by another user, the recovery key may be in that user’s Microsoft account.
  • A key may be saved to a USB flash drive (Plug the USB flash drive in to your locked personal computer and follow the instructions. If you saved the key as a text file on the flash drive, use a different computer to read the text file)
  • A key may be saved to your Azure Active Directory account (for business PCs where you sign in with an Azure Active Directory account, to get your recovery key, see the device info for your Microsoft Azure account).
  • A key may be manually saved as a file (Network drive or other location).
  • A key may be physically printed manually.
NOTE: The option to save as a file is the most commonly used option and can sometimes cause recovery issues when the user saves the file on the drive of the computer that is needing to be recovered (recommend saving to a network drive or another physical hard drive to prevent hard drive corruption from preventing retrieval of the recovery key.
Caution: If the recovery key is lost, the drive cannot be unlocked by other means. To return the computer to operation, reinstalling Windows is the only option (this leads to the loss of all data and configurations of the encrypted hard drive).

For additional information about BitLocker and the process of recovery, see the following articles:

Find my BitLocker recovery key: https://support.microsoft.com/help/4026181/windows-10-find-my-bitlocker-recovery-key This hyperlink is taking you to a website outside of Dell Technologies..

How to decrypt BitLocker: Automatic Windows Device Encryption or BitLocker on Dell Computers.

For additional information about BitLocker Encryption and how it is installed on Dell computers, see Dell Knowledge Base article Automatic Windows Device Encryption or BitLocker on Dell Computers.

For additional information about BitLocker Encryption Keys and recovery, see Microsoft Knowledge Base article Finding your BitLocker recovery key in Windows This hyperlink is taking you to a website outside of Dell Technologies..

Known BitLocker issues: BitLocker recovery known issues - Windows security | Microsoft Docs This hyperlink is taking you to a website outside of Dell Technologies..

其他資訊

Recommended Articles

Here are some recommended articles related to this topic that might be of interest to you.

Out of Warranty support Out of warranty? No problem. Browse the Dell.com/support website and enter your Dell Service Tag and view our offers.

NOTE: Offers are only available for US, Canada, UK, France, Germany, and China personal computer customers. Server and Storage are not applicable.

文章屬性

受影響的產品

Alienware, Inspiron, OptiPlex, Vostro, XPS, G Series, G Series, Alienware, Inspiron, Latitude, Vostro, XPS, Fixed Workstations, Mobile Workstations

上次發佈日期

17 5月 2024

版本

15

文章類型

Solution

返回頁首