server 2012 R2 bitlocker autounlock works on some drives and no on others

I am setting up some USB hard disks for backup on Server 2012 R2

I don't really want to bitlock the operating system disk, just the removable ones.

None of them wanted to auto-unlock.

So I ran manage-bde -autounlock - enable e:
The result was this, and autounlock is turned on.

BitLocker Drive Encryption: Configuration Tool version 6.3.9600
Copyright (C) 2013 Microsoft Corporation. All rights reserved.

Key Protectors Added:External Key:ID: {302040EC-831A-4ADD-A3E2-XXXXXXXXXXX}
External Key File Name:302040EC-831A-4ADD-A3E2-XXXXXXXXXXX.BEK
Automatic unlock enabled.

Then I ran
manage-bde -autounlock - enable f:
f: is an identical external drive...

The response was
BitLocker Drive Encryption: Configuration Tool version 6.3.9600
Copyright (C) 2013 Microsoft Corporation. All rights reserved.

ERROR: An error occurred (code 0x80310020):The operating system drive is not protected by BitLocker Drive Encryption.

Can someone tell my why I can enable autounlock on one drive and not on the others?



It says in
ERROR: An error occurred (code 0x80310020):The operating system drive is not protected by BitLocker Drive Encryption.
that the drive is not encrypted. Maybe you want first to enable BitLocker on this drive and then re-use the command again?



It says in
ERROR: An error occurred (code 0x80310020):The operating system drive is not protected by BitLocker Drive Encryption.
that the drive is not encrypted. Maybe you want first to enable BitLocker on this drive and then re-use the command again?



Drive is encrypted. I have to put the password in each time I connect it.

Mount CapacityGB VolumeStatus Encryption KeyProtector AutoUnlock Protection
Point Percentage Enabled Status
----- ---------- ------------ ---------- ------------ ---------- ----------
E: 1,862.98 FullyEncrypted 100 {Password, RecoveryPas... False On



As I said above the OS drive is not encrypted and I don't want to encrypt it, I want to encrypt the removable drives.



Carol, something is fishy. Please read http://www.eightforums.com/tutorials/21270-bitlocker-auto-unlock-turn-off-windows-8-a.html (it is for win8, but same for server 2012 R2)
Quote: To be able to automatically unlock fixed data drives, the OS drive that Windows 8 is installed on must also be encrypted by BitLocker.
Automatic unlocking for removable data drives can be selected after the drive is encrypted without requiring the OS drive to also be encrypted by BitLocker
--
See the difference? Could it be that windows wrongly identified one of those drives as fixed drive? Please try to find that out. You will be able to do so by conbnecting it and looking at the eventually present icon in the system tray (that icon would let you eject the removable drive). Is it there? It has to.



Can you pls take a screen shot of your Windows Disk Management and post it here?

Share this

Related Posts

There was an error in this gadget