Hey guys ... Readers digest we have become aware of a number of laptops in our organization that for whatever reasons didn't get bitlocker turned on when the help desk staff built them. We're now looking at getting them turned on by either physically visiting with the end user and/or remoting to a target machine via psexec and running the following:
1. PSEXEC onto a machine (psexec \\machine<file://machine> cmd 2. Type "manage-bde -status" to determine if bitlocker is on and active 3. Type "manage-bde -on C: -RecoveryPassword" to turn it on (reboot required to actually start the encryption) 4. Type "shutdown /r /f /t 15" to shut down and reboot their laptop in 15 seconds I wasn't going to do step 4 on the first machine that I just did this on as I know for a fact that the user will take his laptop home at the end of the day anyway. So anyway - literally within 10 seconds of turning bitlocker on at step 3 "ring!" goes my phone and it coincidentally enough (lol) happens to be that user. He's asking me about "... a bitlocker drive encryption popup just appeared on my screen - what's that?" My question for you guys is - can I suppress local host popups? Thanks... -=- jd -=-
