How to use BitLocker Recovery key to unlock Windows Operating System Drive – BitLocker Drive Encryption in Windows 10

By | November 9, 2017

BitLocker could not be enabled

When restarting Windows, if the inserted USB flash drive with a BitLocker Recovery key is disconnected from the PC and logged in, the following error message appears.

The USB flash drive is used to BitLocker encryption of the system drive a instead of TPM because there is no TPM device on PC.

Since the USB drive with the recovery key used to set BitLocker encryption on the C: drive is not inserted(connected) to the PC, Encryption of the system drive is not working. You must restart Windows inserting USB drive containing the Startup key on your PC.

The BitLocker encryption key cannot be obtained. Verify that the Trusted Platform Module(TPM) is enabled and ownership has been taken. If this computer does not have a TPM, verify that the USB drive is inserted and available.

BitLocker Operating system Drive Encryption

In some cases, you may need to restart BitLocker Drive Encryption of the Operating System drive.

Windows Restart and Signin

▼ When you log-in to Windows again, BitLocker encryption starts on the system drive as shown below. If the capacity of C drive is large, it will take a considerable amount of time to fininsh the BitLocker encryption.

BitLocker Drive Encryption

If BitLocker Drive Encryption is successfully started, in the notification area of ​​the taskbar,clicking 1 icon, the message the message “Encryption of C: by BitLocker Drive Encryption is in progress.” is displayed.

BitLocker Operating system Drive Encryption

The screen “Encryption…” is displayed. It will take quite some time for encryption to complete, so wait slowly while doing different work. The time required for encryption varies depending on the PC environment such as CPU and hard disk.

BitLocker locks up when there is a security problem with an encrypted operating system drive (usually drive C). Encrypting the OS itself so that the OS can not be started in an illegal manner. In order to release the lock, you need the BitLocker recovery key.

You can also encrypt external drives such as USB flash drives and SD card convenient to carry, as well as the built-in drive of PC. By encrypting, Even if you lose it, you can greatly reduce the risk of information leakage by encrypting it.

Related Post

How to set BitLocker Drive Encryption to Protect Files on All Drives in Windows 10

BitLocker Drive Encryption is Complete

BitLocker Drive Encryption differs depending on the size of your hard drive and the size of your data, such as files, but it takes several hours to complete encryption on a single drive.

BitLocker Drive Encryption takes time depending on the capacity of the hard disk drive and data such as files, but it takes at least an hour or more to complete encryption of a drive.

▼ Encryption of System Drive is complete.

BitLocker Operating system Drive Encryption

In Windows File Explorer, the icon for the Encrypted System Drive(C: drive) is marked with a 1Lock.

BitLocker Operating system Drive Encryption

BitLocker encrypted PC startup boot error

When saving the BitLocker recovery key to the USB flash drive, it is very important to start booting the BitLocker encrypted system drive with the “USB flash drive”. If your computer detects that BitLocker can not unlock your drive when you start your computer, you can use your recovery key to access your computer.

However, you must be aware that security with BitLocker alone can be very difficult. For example, you may experience the worst situation when an encrypted system drive fails to boot.

Because of BitLocker introduced for security enhancement, you may be asked for a recovery key that is not usually required, or you may not be able to access your PC because there is no recovery key by accident. In the worst case, you may not be able to access your data.

Start BitLocker Drive Encrypted System Drive

If you have saved the BitLocker recovery key to a USB flash drive, it is important to start Windows after inserting a USB flash drive into your PC.

If you have encrypted the drive, using a “USB flash drive” to store the BitLocker startup key and the BitLocker recovery key instead, because of no TPM on the motherboard, When restarting your computer, be sure to connect a “USB Flash Drive”.

If you start the computer without inserting “USB flash drive”, the following message will be displayed.

Plug in the USB drive that has the BitLocker key.

In this case, there are 3 ways that restart windows.

Plug in the USB drive and press Enter key

You can restart Windows as usual after inserting the “USB flash drive” where the BitLocker recovery key is stored and pressing Enter key.

BitLocker Drive Encryption

Entering BitLocker recovery key

You may be asked to enter a BitLocker recovery key when starting your computer..

This means that if the boot information at system startup differs from the information stored within the Trusted Platform Module(TPM), the hardware configuration has changed, or the BIOS has detected that the system configuration has changed, entering the BitLocker recovery key Seems to be required.

As shown in the figure above, you can restart PC with pressing Esc key, and entering BitLocker recovery key.

BitLocker Drive Encryption

But what if I lose my BitLocker recovery key?

What is the BitLocker encryption on the drive?

When encrypting your entire drive, it is difficult to gain access to your PC if you lose the USB memory with BitLocker recovery key or dont’t know BitLocker recovery key.

Therefore, it is a good idea to encrypt only some folders or files that require encryption, rather than encrypting the entire drive.