BitLocker Drive Encryption - Windows 7 Drive - Turn On or Off with no TPM

hi Shaan,
this is suresh. thanks for your solution, but actual problem is:

Situation:
1. my laptop is non TPM.
2. in this system Windows 7 ultimate is installed in C drive.
3. My D drive is encrypted with bitlocker without tpm (start->Controlpanel->Secturity options->Bitlock locker-> turnon Bitlocker.)
4. in my offlice flash drive restricted.
5. Bitlocker password is in my mind
6. bitlocker recover key is saved in txt file in my desktop or print.

Questions:

please give the solutions the below :

1. bitlocker enable without TPM ----- procedure step by step
2. in the bitlocker encryption process where the password stores in c'drive. (exact path)
3. the above bitlocker enabled system is in Active directory. any chance to save bitlocker recovery key directly in active directory.


4. Bit locker needs to store the password required for decrypting the data drive. Where does it store the password? If it stores in C drive, is it encrypted? If not, then it does not solve confidentiality or integrity that comes with any encryption system.
5. Where do you store the recovery password? Why do you need to store the recovery password when Microsoft stores it in our own recovery database?
6. Did you test doing this on machine connected to Microsoft domain? Microsoft uses a certificate which is passed on by AD for encrypting the hard drive. Doe that happen in the model you suggestsed.

please give the solution to the above.

thanks shaan.
thanks for your help:)

hi shaan,one more doubt,
in windows 7 in diskmangement my c drive is 40 gb and one more system drive is there. actually i know litte bit about that, briefly explain about that. and also in bit locker enabling process the password is stored in system c drive? or this 100mb miracle drive?

This fabulous tutorial is commendable Brink. Thanks for the great work.

I have a question. I bought a laptop Acer Aspire 5738G with Windows 7 Home Premium x64 pre-installed on it. It had BitLocker too and the drive encrypted by BitLocker was other than C: Drive on which Windows was installed. Its size was around 2 GB.

It came already installed and I didn't know of it but liked it very much and stored files on it safely and used a password to open the encrypted drive. The password was set by me.

Now the problem is that I have formatted my C: Drive and installed Windows 7 Ultimate x64. BitLocker is there but is not turned on. I want to encrypt the same drive as was before but I can't find it anywhere. Do I have to create a new partition? MY NOTEBOOK IS NON-TPM.
Hope you get my question. Please help me out.
Regards

Brink said:

Hello Khan, and welcome to Seven Forums.

Could you post a screenshot of Disk Management (diskmgmt.msc) showing your complete drive layout? This will help determine if you will need to create a new partition or not to use BitLocker on. :)

Sir here it goes... But I want to have a small partition for encrypting important files and folders which was available before and not now. why can't I find it now??

Brink said:

Khan,

Is one of the drive letters listed in Disk Management the drive you wanted to encrypt with BitLocker? If so, and it does not show up in BitLocker (see link), then did you turn off BitLocker for that drive before you reinstalled Windows 7? If not, then you may need to format the partition before being able to use BitLocker on it again.

Sir,
The drive that was encrypted is not listed here. It was in addition to all these drives. Size was around 2 GB. I just moved my encrypted files to another drive before formatting DRIVE C. I didn't turn off or format the ENCRYPTED Drive, I did nothing to it. and now it's not there. Is it possible that the drive was a virtual attached drive or something like that ??