You administer computers that run Windows 8 Enterprise and are members of an Active Directory domain. Some volumes on the computers are encrypted with BitLocker.

The BitLocker recovery passwords are stored in Active Directory. A user forge

ts the BitLocker password to local drive E: and is unable to access the protected volume.

You need to provide a BitLocker recovery key to unlock the protected volume.

Which two actions should you perform? (Each correct answer presents part of the solutio

n. Choose two.)

A. Ask the user to run the

manage

–

bde

–

protectors

–

disable e:

command.

B. Ask the user for his or her logon name.

C. Ask the user to run the

manage

–

bde

–

unlock E:

–

pw

command.

D. Ask the user for his or her computer name.

E. Ask the user for a

recovery key ID for the protected drive.

Explanation:

D: To view the recovery passwords for a computer you would need the computer name:

In Active Directory Users and Computers, locate and then click the container in which the computer is lo

cated.

Right-click the computer object, and then click Properties.

In the Properties dialog box, click the BitLocker Recovery tab to view the BitLocker recovery passwords that are associated with the particular computer.

C: The Manage-bde: unlock command

unlocks a BitLocker-protected drive by using a recovery password or a recovery key.

References:

https://technet.microsoft.com/en-us/library/dd759200(v=ws.11).aspx

http://www.concurrency.com/blog/enable-bitlocker-automatically-save-keys-to-active-directory

/