我是CSO在线的苏珊·布拉德利。今天我们将讨论如何确定我们的机器是否启用了bit locker。但首先我要讲一点背景知识来解释为什么会出现这个话题。最近,在7月的更新中,Windows 10的所有服务栈都发布了更新,以解决安全引导特性的一个问题,该问题可能导致bit locker进入恢复模式,因为竞争条件。正如您在KB文章中看到的,从Windows Server 2012到Windows 10的所有服务栈补丁的安全部分都收到了修复这个问题的服务栈更新。这个问题第一次出现在5月份的更新中,当时Jody McCarter在补丁管理网站的列表中发现某些更新导致了这个问题。如果你有bit locker启用你有一个困难的时间修补那个月。在一些机器上启用了bit locker,它实际上导致系统不能正确引导。你得去挂钻头柜。然后继续安装更新。 Now normally bit locker is a very quiet technology. It cooperates very well with Windows Update. This time it didn't. And it brought up the question in my mind of do we have at our fingertips at a moment's notice ways that we can identify which machines do and do not have bit locker. One of the easiest ways of course is PowerShell.
从PowerShell命令提示符类型和管理dash B dash状态C。
它还会报告系统是否加密。需要一点时间。但它带着地位回来了。然后,它会带着对系统的支持返回,表明驱动器是完全加密的。在推出Bitlocker时要考虑的一件事是如何帮助终端用户自我恢复。再一次,不是位存贮器经常有问题更新,但如果你确实有问题,它是明智的有一个适当的计划,以便最终用户有能力取回恢复密钥。有很多种方法。如果你有一个Azure Active Directory,你可以把它挂在他们的门户中。正如你可以看到从帐户Active Directory窗口页。我的家用电脑加入了Azure Active Directory。 And if I had an issue all I'd have to do is log in with my credentials and I could click here and get that bit locker key. If you don't have Azure Active Directory let's say you just use Microsoft accounts. Those bitlocker recovery keys are automatically uploaded to a Microsoft account site. In fact if you've ever purchased surface devices you may not realize this but if you log in automatically with a Microsoft account those bit locker recovery keys are automatically saved up in the cloud. You go to account at Microsoft dot com slash devices and your bit locker recovery keys are there. You may even have recovery keys from long ago devices. Here I've got some old old surface devices that I don't even have around anymore and still have the bit locker recover key up in the cloud. Bottom line there's many ways to control and manage this bit locker keys. Until the next time this is Susan Bradley for CSO Online.
从PowerShell命令提示符类型和管理dash B dash状态C。
它还会报告系统是否加密。需要一点时间。但它带着地位回来了。然后,它会带着对系统的支持返回,表明驱动器是完全加密的。在推出Bitlocker时要考虑的一件事是如何帮助终端用户自我恢复。再一次,不是位存贮器经常有问题更新,但如果你确实有问题,它是明智的有一个适当的计划,以便最终用户有能力取回恢复密钥。有很多种方法。如果你有一个Azure Active Directory,你可以把它挂在他们的门户中。正如你可以看到从帐户Active Directory窗口页。我的家用电脑加入了Azure Active Directory。 And if I had an issue all I'd have to do is log in with my credentials and I could click here and get that bit locker key. If you don't have Azure Active Directory let's say you just use Microsoft accounts. Those bitlocker recovery keys are automatically uploaded to a Microsoft account site. In fact if you've ever purchased surface devices you may not realize this but if you log in automatically with a Microsoft account those bit locker recovery keys are automatically saved up in the cloud. You go to account at Microsoft dot com slash devices and your bit locker recovery keys are there. You may even have recovery keys from long ago devices. Here I've got some old old surface devices that I don't even have around anymore and still have the bit locker recover key up in the cloud. Bottom line there's many ways to control and manage this bit locker keys. Until the next time this is Susan Bradley for CSO Online.
受欢迎的
以视频IDG.tv