BitLocker for Vista Ultimate and Enterprise editions now enables end users to take advantage of a multi-factor authentication method which is designed to bundle a key protected by the Trusted Platform Module with a USB stored Startup Key.BitLocker doesn’t just encrypt the user’s files, it encrypts the entire operating system partition, including Windows files, all your software applications as well as all the users’ data stored on the drive.BitLocker now supports full drive encryption, before this BitLocker only supports the encryption of bootable drives. Microsoft has made available for download a number of three tools focused on BitLocker.
BitLocker Repair Tool: BitLocker Repair tool helps access data encrypted with BitLocker if the hard disk has been physically damaged. This tool attempts to reconstruct critical data from the drive and salvage any recoverable data.To decrypt the data, a recovery password or recovery key is required. In some cases, a backup of the key package is also required.Use this command-line tool if the following conditions are true:
- A volume has been encrypted by using BitLocker Drive Encryption.
- Windows does not start, or you cannot start the BitLocker recovery console.
- You do not have a copy of the data that is contained on the encrypted volume.
BitLocker Drive Preparation Tool : Windows BitLocker Drive Encryption is a feature that encrypts one or more volumes (drives) attached to your computer and that can use a Trusted Platform Module (TPM) to verify the integrity of early startup components. Because BitLocker encrypts the entire volume of data, it requires the computer to be configured with an active partition, used for startup, which is separate from the operating system volume. This is called a “split-load configuration.” User data is stored on either the operating system volume or additional data volumes, which can also be encrypted by using BitLocker.
The BitLocker Drive Preparation Tool automates the following processes to configure the hard disk drive correctly:
- It creates a second volume, if one is not already present.
- It moves the boot files to the correct volume, and ensures that the operating system is correctly configured to find them at startup.
- It configures the correct volume as the active partition on the drive for startup.
When the tool finishes, you must restart the computer. The computer’s hard disk drive will then be configured correctly for BitLocker.
BitLocker Recovery Password Viewer for Active Directory Users and Computers tool: The BitLocker Active Directory Recovery Password Viewer lets you locate and view BitLocker recovery passwords that are stored in AD DS. You can use this tool to help recover data that is stored on a volume that has been encrypted by using BitLocker. The BitLocker Active Directory Recovery Password Viewer is an extension for the Active Directory Users and Computers MMC snap-in. After you install this tool, you can examine a computer object’s Properties dialog box to view the corresponding BitLocker recovery passwords. Additionally, you can right-click a domain container and then search for a BitLocker recovery password across all the domains in the Active Directory forest.
Supported Operating Systems: Windows Server 2008; Windows Vista Enterprise; Windows Vista Enterprise 64-bit edition; Windows Vista Service Pack 1; Windows Vista Ultimate; Windows Vista Ultimate 64-bit edition.
- BitLocker Recovery Password Viewer for Active Directory Users and Computers tool .
- BitLocker Repair Tool .
- BitLocker Drive Preparation Tool.