Disabling Bitlocker

From RHLUG Wiki
Revision as of 19:48, 16 March 2025 by ScanuRag (talk | contribs) (Improve formatting)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

In order to dual-boot Linux on a RHIT laptop, it is recommended to disable BitLocker (and Secure Boot). To do so on a RHIT Laptop, perform the following steps.

Getting your recovery key[edit | edit source]

Picture of my account page

Get your BitLocker recovery key in case any issues arise. To do so, go to [1](https://aka.ms/aadrecoverykey)

Click Devices -> <click your device> -> View BitLocker Keys, copy this onto a mobile device or somewhere NOT on your RHIT computer. This will be required if something goes wrong when disabling BitLocker.

Disabling Bitlocker[edit | edit source]

  1. Search for "Manage BitLocker" in the search bar and click the "Manage BitLocker" Control Panel entry.
  2. Click "Turn off BitLocker" and follow the prompts provided.
  3. Wait for the BitLocker drive encryption to be disabled. Note that you are not done after this due to the Rose-Hulman MDM configuration. Follow the rest of these steps to prevent it from turning back on each time you reboot
  4. Go to the search bar, and type "services.msc".
  5. Find "BitLocker Drive Encryption Service".
  6. Right-click this entry and click Properties, then set Startup Type to Disabled.
  7. Search for "Group Policy Editor" and click "edit group policy", and navigate to Computer Configuration > Administrative Templates > Windows Components > BitLocker drive encryption.
  8. In fixed data drives, OS drives, and probably also removable drives just to be safe, disable "Enforce drive encryption type", "configure use of hardware based encryption", and other ones that are directly related to the configuration and enabling of BitLocker
  9. At this point, you should be good to go! Reboot and verify that BitLocker is still disabled.
Retrieved from "https://wiki.rhlug.org//index.php?title=Disabling_Bitlocker&oldid=492"