BitLocker Sample Deployment Script

The EnableBitLocker.vbs sample script is an example of how you can automate the deployment and configuration of BitLocker Drive Encryption.

 
 
 
 
 
4.1 Star
(9)
Add to favorites
Security
7/29/2010
E-mail Twitter del.icio.us Digg Facebook
Sign in to ask a question


  • Enable Bitlocker in USB drives
    1 Posts | Last post October 25, 2018
    • Hi there,
      
      Is it possible to enable bitlocker for connected removable drives using this script?If yes, anyone please help with the parameters?
      
      ALso i understand that we need to have a password set while enabling bitlocker for usb,Is it anyway we can keep a common password for this as we are planning to utilize this script for deploying to many users.?
  • Script vs Win7 SP1 language pack
    2 Posts | Last post August 03, 2018
    • Hi
      
      In which part of this .vbs script must you edit it to make it work with different language pack in a Win7SP1 environment ?
      
      I run it with parameters /on:tpm /l:c:\bitlocker.log /sms
      
      When I run it for example with Win7SP1 German or polish lp, when it goes to the part where to activate the TPM chip, the script completes
    • A bit late, but for future reference...
      
      Remove all instances of '= "true"' from the script
      
      example line 
      If bIsEnabled = "True" and bIsActivated = "True" and bIsOwned = "True" Then 
      becomes
      If bIsEnabled and bIsActivated and bIsOwned Then
  • How to Run the Script in the right way?
    4 Posts | Last post August 03, 2018
    • Hi, can somebody explain how this script is working! So I'll want to rollout Bitlocker at some of my Clients.
      I have Setup the AD with the Features to integrade the Recovery Key, so now I Need a tool / script to rollout the Bitlocker at my Clients.
      
      Now I have tested this script like: cscript bitlocker.vbs /on:tpm /l:c:\temp\bitlocker.log
      
      It Looks like the script was successfully, but nothing happend at my Client.
      
      So it would be very helpfully if somebody could advice me how to use this script.
      
      Thanks in advanced
      Marius
    • Hi, I have found the Problem.
      I had a german OS, now it Looks like working :)
      
      
    • Hi Marius,
      
      I had a spanish OS, How did you do?
      
    • A bit late, but for future reference...
      
      Remove all instances of '= "true"' from the script
      
      example line 
      If bIsEnabled = "True" and bIsActivated = "True" and bIsOwned = "True" Then 
      becomes
      If bIsEnabled and bIsActivated and bIsOwned Then
  • Small modifcation to allow multilanguage support
    1 Posts | Last post August 03, 2018
    • Found this script to be really useful in a mass automated distribution of Bitlocker, thanks! Just one suggestion. There are various if statements with a '= "true"' condition, change all of these so they are checking the boolean value instead.
      
      example
      If bIsEnabled = "True" and bIsActivated = "True" and bIsOwned = "True" Then 
      change to
      If bIsEnabled and bIsActivated and bIsOwned Then
      
      This allows the script to run successfully on non-English language based systems.  Polish systems for example return "Prawda" or "Falsz" rather than "True" or "False" so the current check fails and no changes to the system occur.
      
  • How to output log file of completed machines when running this script
    1 Posts | Last post September 06, 2017
    • HI there,
      I am windering what the best way to deploy this script is, startup script, at user logon etc?
      My other question is, how do I get the results to pipe to a network share with the computer names that have successfully enabled Bitlocker and TPM
      
      All advice much appreciated
  • GPO plus script
    1 Posts | Last post March 01, 2017
  • Не работает в локализованной версии Windows
    1 Posts | Last post March 04, 2016
    • http://onix.me/quick-start-central-installation-bitlocker/  необходимо немного подправить скрипт
  • Bitlocker partition?
    1 Posts | Last post February 03, 2016
    • How about Bitlocker partition, does it have to be created beforehand?
  • Please help
    1 Posts | Last post November 17, 2015
    • I need to deploy this script using GPO. Im not good at scripting. Can someone guide me to step by step instructions on how to get it deployed using GPO? I created the enablebitlocker.vbs file. I put it in the "startup script" settings in the GPO but it gives me an error that I dont have the switchs "no options / were specified at the command line". Am I suppose to create a different script to point the the enablebitlocker.vbs script? Thanks for any help you can give me. 
  • Windows 8 and 8.1
    2 Posts | Last post June 18, 2014
    • This script works perfectly for windows 7 machines, but while we tried it with windows 8 and 8.1 machine it is always returning an error. Workaround is to manually enable from user profile by right clicking and turning on. Did any one tested the same with 8 or 8.1 machines; please share your thoughts
      NB: I have pasted the error log below for details
      
      Attempting to enable BitLocker...
      ERROR - failed to initiate drive encryption with the following exit code:  80070057
      Deleting previously created key protectors...
      Successfully removed key protectors with the following exit code:  0  Script is quitting...
      The EncryptableVolume(s) found: \\?\Volume{8183201d-8579-11e2-be79-402cf4bb2d25}\
      Script ended  6/9/2013      11:30:23 AM
      Script processing started  6/9/2013       11:39:58 AM
      Proper number of command line arguments passed to the script
    • I have found the updated one here. Thanks
      
      http://gallery.technet.microsoft.com/scriptcenter/BitLocker-deployment-2b260d26#content
1 - 10 of 15 Items