This article provides insights into BitLocker encryption, the significance of BitLocker keys, and how they relate to devices managed with Microsoft Intune and unmanaged devices within the CoreView platform.
What is a device encrypted with BitLocker?
BitLocker is a full disk encryption feature available in Windows that helps protect data by encrypting the entire drive. When a device is encrypted with BitLocker, all data on that drive is secured, making it inaccessible without proper authentication. This is especially important for safeguarding sensitive information in case the device is lost or stolen.
What is a BitLocker key?
A BitLocker key, also known as a recovery key, is a unique alphanumeric key that users need to unlock their BitLocker-encrypted drive. This key is crucial for regaining access to the encrypted data if the user forgets their password, if there are issues with the hardware, or if there are other authentication failures.
Application of BitLocker keys on managed and unmanaged devices
BitLocker can be applied to both devices managed through Intune and unmanaged devices:
- Devices managed with Intune: when a device is enrolled in Intune, the BitLocker recovery key is automatically backed up and stored securely in Microsoft Entra ID. This allows IT administrators to easily retrieve the key when needed.
- Unmanaged devices: for devices that are not managed by Intune, users must manually save and manage their BitLocker recovery keys. Without proper management, recovering access to encrypted data can become challenging.
Reporting on BitLocker keys in CoreView
Within the CoreView platform, there are specific reports that show details regarding BitLocker keys:
- Device reports: The “Devices” reports include a column labeled “Has BitLocker keys”. This column indicates whether a BitLocker key exists for each device.
- Intune device reports: Similarly, the “Intune devices” reports also feature the “Has BitLocker key” column for easy assessment.
- BitLocker key report: The “BitLocker keys” report provides a more focused view, immediately displaying devices that have an assigned BitLocker key along with its recovery key.
By using these reports, IT administrators can effectively monitor and manage BitLocker encryption across their organization's devices, ensuring data security and compliance. If you have further questions about BitLocker or its implementation within CoreView, please reach out to our support team.