For bitlocker, there is not a password reset tool BUT you're forced to create a recovery password (it's something like te product key for office or windows). So, if you've lost you usb dongle or you've moved your HD to a different hardware you can boot and choose recovery (f8) and then type the recovery password which will let you to boot the OS. Then you can temporarily disable bitlocker (fast), deactivate bitlocker (this requires the unencryption process to be performed) or generate a new key. Moreover the recovery password can be stored in Active Directory.
Regards alex -----Original Message----- From: Casey DeBerry [mailto:[EMAIL PROTECTED] Sent: venerdì 5 maggio 2006 21.21 To: Saqib Ali; Ken S Cc: [email protected] Subject: RE: Laptop Encryption & Write Permissions How/what are the management functions with BindView or BitBlocker? Are there any password reset functions for the user who is not connected to the network? -----Original Message----- From: Saqib Ali [mailto:[EMAIL PROTECTED] Sent: Tuesday, May 02, 2006 3:36 PM To: Ken S Cc: [email protected] Subject: Re: Laptop Encryption & Write Permissions On 5/2/06, Ken S <[EMAIL PROTECTED]> wrote: > How will bitlocker (or other full drive encryption products) impact > forensics investigations AND normal administrative functions for > machines that are 1) powered down and for those that are 2) on-line? 2) When the machine is online, there will be no difference. BindView, pstools etc will work the same way. 1) When the machine is off-line, the drive will be in a encrypted state, and the decryption keys are with the TPM. So any access to the drive in this "off-line" mode will require obtaining the decryption keys from the TPM. -- Saqib Ali, CISSP, ISSAP Support http://www.capital-punishment.net ----------- "I fear, if I rebel against my Lord, the retribution of an Awful Day (The Day of Resurrection)" Al-Quran 6:15 ----------- ------------------------------------------------------------------------ --- ------------------------------------------------------------------------ --- ------------------------------------------------------------------------ CONFIDENTIALITY NOTICE: This e-mail contains confidential information and is intended only for the individual named. If you are not the named addressee, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately if you have received this e-mail by mistake and delete this e-mail from your system. E-mail cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. Neither the sender nor CoBiz Inc. and its subsidiaries accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. --------------------------------------------------------------------------- --------------------------------------------------------------------------- --------------------------------------------------------------------------- ---------------------------------------------------------------------------
