Encrypting*a*Windows*7*Hard*Disk* with%bitlocker%disk%encryption!

Similar documents
If you are the recipient of an encrypted message, the following instructions will help you to decrypt your message. The California State University

Adding Digital Signature and Encryption in Outlook

Use the below instructions to configure your wireless settings to connect to the secure wireless network using Microsoft Windows Vista/7.

Internet Explorer Settings for use with Privia

Account Create for Outlook Express

Secure Actions for Recipients

How To Send An Encrypted In Outlook 2000 (For A Password Protected ) On A Pc Or Macintosh (For An Ipo) On Pc Or Ipo (For Pc Or For A Password Saf ) On An Iphone Or

Version 4 Revised 5/2015

Yale Software Library. PGP 9.6 for Windows

How To Create A Digital Signature And Sign A Document With Adobe Reader XI

Proofpoint provides the capability for external users to send secure/encrypted s to EBS-RMSCO employees.

Prerequisite. Getting Started. Signing and Encryption using Microsoft outlook 2007

IQProtector Mobile Application

Prerequisite. Getting Started. Signing and Encryption using Microsoft outlook 2010

Installing your certificate on your Mac

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on Mail Tab.

Installing your Digital Certificate & Using on MS Out Look 2007.

Guidance for using the East Sussex County Council Secure system

Encryption at the University of Miami Miller School of Medicine and University of Miami Health System

Extracting an S/MIME certificate from a digital signature

How to set up Outlook Anywhere on your home system

Secure Mail Message Retrieval Instructions

AIOLOS net access system

Instructions for Microsoft Outlook 2003

Encryption. Instructions for sending and retrieving an encrypted

Get Smart Card Ready. How to Recover Your Old (Expired) Certificates

Instructions: Configuring Outlook 2003 with Exchange 2010 on the FIUMail

CISCO SECURE MAIL. External User Guide. 1/15/15 Samson V.

Set Up Setup with Microsoft Outlook 2007 using POP3

Guide to PayPal Account Setup

Jumble for Microsoft Outlook

PrestoFax User Guide Version 3.0

Options for encrypted communication with AUDI AG Version of: 31 May 2011

HGC SUPERHUB HOSTED EXCHANGE

DATA SHEET Setup Tutorial

Encryption Procedures

7. In the boxed unlabeled field, enter the last 4 digits of your Social Security number.

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on. User Information

Installing your certificate on your Windows PC

Creating a User Profile for Outlook 2013

Data Vault: Windows Agent Installation Guide Issue 1 September 2012

How do I share a file with a friend or trusted associate?

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on Mail Tab.

Bank of Hawaii Protecting Confidential

Update Instructions

Steps to Opening Your First Password-Protected Envelope

Installation Guides - Information required for connection to the Goldfields Institute s (GIT) Wireless Network

January 31, 2006 v2.0 Page 1 of 15

TELNET CLIENT 5.0 SSL/TLS SUPPORT

10/28/2013. Partners Zixmail Web Portal. Provider Training. Let s Get Started!

How to Set Up LSUS IMAP in Outlook 2013

Online Backup - Installation and Setup

Department of Alcohol & Drug Programs. Information Management Services Division (IMSD) ENCRYPTION INSTRUCTIONS

There are several ways of creating a PDF file using PDFCreator.

Restoring Files. Table of Content. No-Backup. Official website: Restoring Files

Update Instructions

Welcome to Business Internet Banking

For paid computer support call

How to Use Boston Private Bank s Secure Mail Service

1. Open your Internet Browser and enter 2. You will be prompted to enter a username and password.

Patriots Outlook Configuration

Versions Addressed: Microsoft Exchange 2003 Document Updated: March 25, 2015 Co nfidential Copyright 2015 Smarsh, Inc. All rights reserved.

How to Setup Privacy Guard Encryption.

SEC External Guide for Using the Encryption Solution

WIRELESS TRAINING SOLUTIONS. by vlogic, Inc. L a b 0.2 Access to Content Management System

Using Voltage Secur

Secure transmission of Protected Health Information (PHI)

SecureLock Tool Functions:

Connecting to UNSW Exchange & zmail using MS Outlook Introduction

EDE Electronic Data Exchange Instructions April 2007

Absorb Single Sign-On (SSO) V3.0

Knights Outlook 2013 Configuration

Update Instructions

Regions Secure Webmail. Instructions

Installing and configuring Microsoft Reporting Services

Secure with ZixCorp. Iowa Division of Banking

BitLocker To Go User Guide

PaperClip. em4 Cloud Client. Manual Setup Guide

New Mexico State University

Eurobackup PRO: Configuration Best Practices

PaperClip. em4 Cloud Client. Setup Guide

Xerox Encryption Recipient Guide. Cisco Registered Envelope Service

Eurobackup PRO Exchange Databases Backup Best Practices

How to use Certificate in Outlook Express

IMPORTING AND EXPORTING CERTIFICATES IN IE AND FIREFOX FOR BPIA AND PRACS

Guide to Configuring the UHU Wireless Network for Windows Vista

Windows 8 & RT Wireless Configuration For NCC Student Owned Laptops

Table of Content. Official website:

How do I find the Wireless Security Information in Windows XP, Vista, 7, 8 or 8.1?

Differences between Computer and User Templates

1. Open the preferences screen by opening the Mail menu and selecting Preferences...

Transcription:

Encrypting*a*Windows*7*Hard*Disk* with%bitlocker%disk%encryption Thisdocumentcontainsthenecessarystepstoencryptthecontentsofaharddrive usingbitlockerandwindows7. Thefollowinginstructionsarederivedfromdocumentationat: http://technet.microsoft.com/en1us/library/cc731549(v=ws.10) http://technet.microsoft.com/en1us/library/dd835565(v=ws.10) 5November2012 DavidAnderson LouArminio 1

EnsureSystemhasaTPMChip EntertheBIOSofthesystemtoverifythepresenceofaTrustedPlatformModule (TPM)chip.TheTPMchipstorestheauthenticationkeyfortheencrypteddrive. WhileBitlockerwillworkonasystemthatdoesnothaveaTPMchip,thiswill requirethesystemusertoinsertausbflashdriveintothecomputerinorderto unlockthedrivewheneveritisstarted. LocatingthesectionoftheBIOSthatshowsandallowsconfigurationoftheTPM chipwillvarybysystem.thefollowingscreenshotshowsthebioslocationona DellLatitudeD630laptop. 2

ActivatetheTPMChip Beforetellingthesystemtostartencryption,itwillbenecessarytoactivatetheTPM chip.thisisatwoqstepprocess.first,ensurethetpmsecuritysettingis On.Ifit isnot,enablethecheckboxandclick Apply. Changingthisvaluewillrequireareboot.Save/ExittheBIOSsettingscreen,then reenterthebiosforthenextstep. 3

ActivatetheTPMModule Next,gototheTPMActivationsettingsandactivatetheTPMModule. Changingthisvaluewillrequireareboot.Save/ExittheBIOSsettingscreen,then reenterthebiosforthenextstep. 4

VerifySystemBootOrder Anotherimportantsettingtoverifyisthebootorderofthesystem.Ifthesystemis settoattempttobootfromausbdevicesbeforetheinternalhdd,attemptingto verifyasavedrecoverykeywillfail,andtheencryptionprocesswillhavetobe restarted(whichwillgenerateanewrecoverykey,whichwillagainneedtobe saved). OnceBIOSsettingsareproperlyset,(shouldnotrequireanotherrestart),allow Windowstostart. 5

StartBitlockerEncryption LogontoWindowsusinganNAUdomainaccountwithadministratorprivilegeson thecomputer.gotostartq>controlpanelq>systemandsecurityq>bitlockerdrive Encryption. Click TurnonBitlocker. 6

Windowswillcheckyourcomputer sconfigurationtomakesureitiscompatible withbitlocker(thiswillfailifthetpmwasnotpreviouslyactivated).thenitwill initializethetpmmodule.beforebeginningtoencryptthedrive,youwillbegiven theopportunitytosavetherecoverykey.therecoverykeywillautomaticallybe senttoactivedirectoryaspartofgrouppolicy,butmakingalocalcopymightbea goodideaaswell.threeoptionsareavailableforsavingthekey:savingtousbflash drive,savingtoafile,andprintingthekey.anyandalloptionsmaybeselected. Beforechoosingwhetheryouwanttosavealocalcopyofthekey,orhowtodoit, youshouldconsiderhowyouintendtosafeguardthekey.ifitisstoredonthedrive youareabouttoencrypt,youwillnotbeabletouseittorecoverthedriveunlessit iscopiedelsewhere,sinceitwillbeinaccessiblefromthatdriveinarecovery scenario.ifitistobestoredonausbflashdriveorprinted,thekeyshouldbe hiddenawayinasafelocation.itshouldnotbekeptwiththesystemthatit recovers.doingthiswouldbelikekeepingakeyinsidethekeywayofthelock.it wouldeffectivelyinvalidatetheprotectiontotheencrypteddrive.onceyouhave securedalocalcopyofthekey,clickthenextbuttontoproceed. YouwillseethefollowingscreensasWindowsbeginstheprocess. 7

8

9

IfyousavedtherecoverykeytoaUSBflashdrive,thedrivewillcontainfilessuchas thefollowing.acopyofyourrecoverykeywillbeautomaticallysavedtothenau domainactivedirectoryserver.itscanrecoverthiskeyintheeventofloss.youdo notneedthekeytouseyourcomputer.itisonlynecessaryifyourharddriveis movedtoanothersystem. Nowyouarereadytostarttheencryptionprocess.Asanaddedsafeguard,youare giventheoptiontoverifytheintegrityofarecoverykeyifyoustoredoneonausb flashdrive.checktheboxonthe Areyoureadytoencryptthisdrive? screenifyou wouldliketodothis.ifyoudidnotverifythatthehddwillbootbeforeausb attacheddevice,thenthismaynotwork,andwillrequirerestartingtheprocess, includinggeneratinganewrecoverykey. Ifyoudecidedtoverifytherecoverykey,youwillneedtorebootwiththeUSBflash driveinsertedinthecomputer.theverificationdoesnottakelong. 10

Afteryoureboot,youwillseeamessageoriginatinginthesystemtrayareaofthe screen(typicallythelowerright)indicatingencryptionisinprogress.youcan verifythisbygoingtothesystemtrayandclickingontheicon[getscreenshot].you willseeawindowlikethis. Encryptionwilltakeplaceinthebackgroundandthesystemcanbeusedwhilethis istakingplace.therewillbeaslightdegradationinperformance,butmaynotbe thatnoticeabledependingontheactivitiesyouperform. 11

Thesystemmaytakeuptoeighthoursormoretoencrypt.Factorswhichaffectthis timearesizeoftheharddisk,speedofthecpu,andwhetheritisbeingusedwhile encryptionistakingplace.ifthesystemisshutdownencryptionwillresumeafterit isrestarted.besuretocheckthesystemtraytoensureencryptionisrunningaftera restart.oncetheharddiskisencrypted,successcanbeverifiedbygoingtocontrol Panel,SystemandSecurity,BitlockerDriveEncryption.Thisscreenwillindicate thatbitlockeristurnedonfortheharddrive. 12

Oncethisprocessiscompleted,yourharddrivewillbeencryptedandyourdata onlyvisibleafteravalidwindowslogin.ifyourcomputerislostorstolen,yourdata willremainprotected.pleasenotethat,althoughyourharddriveisnowencrypted, yoursystembackupswillnotbeencrypted.ifyoubackupasystemcontaining sensitiveinformation,youmustsecureandprotectyourbackupmediatoprevent exposureofyourdata. 13

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information