We have configured Group Policy to require the automatically back up bitlocker recovery keys to Active Directory. I am confident that this is, in fact, occurring based on the event logs of the PCs, which are logging TPM-WMI event 513...
TPM Owner Authorization information was backed up successfully to Active Directory Domain Services.
Odd thing is that when we search for the recovery key in Active Directory, we receive...
Your search for "xxxxxxxx" returned no results.
When we look at the computer object directly, we see...
No items in this view.
I know that this has worked properly in the past, because we have recovered bitlocker keys for hard drives previously. It seems to be a permisssions issue of some kind, however, we are using Domain/Enterprise/Schema admin to query AD for the recovery key.
This is occuring on Windows Server 2008, SP2.
TPM Owner Authorization information was backed up successfully to Active Directory Domain Services.
Odd thing is that when we search for the recovery key in Active Directory, we receive...
Your search for "xxxxxxxx" returned no results.
When we look at the computer object directly, we see...
No items in this view.
I know that this has worked properly in the past, because we have recovered bitlocker keys for hard drives previously. It seems to be a permisssions issue of some kind, however, we are using Domain/Enterprise/Schema admin to query AD for the recovery key.
This is occuring on Windows Server 2008, SP2.
