Hi, I just did a clean reinstall of my windows and followed the PG guide. One of the sections mentioned, " BitLocker Drive Encryption - You may wish to re-encrypt your operating system drive after changing these settings."
How do I do this re-encryption? Is it by turning it off and turning it back on? There’s no option to do a re-encryption and wanted to make sure I do it correctly.
Thanks!
Yes, turn it off (not disable temporarily), let decrypt the drive and then turn it on again, it will re encrypt the drive with the new settings.
Thanks!
First, you have to take backup if you have attached any data storage device. Then put password to unlock the encrypted drive. In case If you lost password or recovery key then the first attemp to create a backup your data then format drive. For re-encryption you have to unlock your drive then encrypt it again.
manage-bde -off C:
manage-bde -protectors -delete C: -type TPM
manage-bde -on C: -encryption-method AES256
manage-bde -on C:
Decrypt will take a while (first command), so wait for it to complete, then executed other commands.
You can check status via
manage-bde -status C:
If you have other drives change the drive letter