Privacy and Security Find BitLocker Recovery Key in Windows 11


BitLocker_banner.png

This tutorial will show you how to find your BitLocker recovery key for a drive in Windows 10 and Windows 11.

BitLocker Drive Encryption is a data protection feature that integrates with the operating system and addresses the threats of data theft or exposure from lost, stolen, or inappropriately decommissioned drives and computers.

BitLocker is the Windows encryption technology that protects your data from unauthorized access by encrypting your drive and requiring one or more factors of authentication before it will unlock it.

Windows will require a BitLocker recovery key when it detects a possible unauthorized attempt to access the data. This extra step is a security precaution intended to keep your data safe and secure. This can also happen if you make changes in hardware, firmware, or software which BitLocker cannot distinguish from a possible attack. In these cases, BitLocker may require the extra security of the recovery key even if the user is an authorized owner of the device. This is to be certain that the person trying to unlock the data really is authorized.

Your BitLocker recovery key is a unique 48-digit numerical password that can be used to unlock your system if BitLocker is otherwise unable to confirm for certain that the attempt to access the system drive is authorized.

It depends on how you backed up your BitLocker recovery key for where to find it.

Reference:

Find your BitLocker recovery key - Microsoft Support

Learn how to find your BitLocker recovery key in Windows.
support.microsoft.com support.microsoft.com


It is extremely important to keep a back up of your BitLocker recovery key for each encrypted drive available in case BitLocker Recovery asks for it.

If you are unable to locate a required BitLocker recovery key for an OS drive and are unable to revert a configuration change that might have cause it to be required, you’ll need to reset or clean install Windows. This will cause total data loss on the OS drive.

If you are unable to locate a required BitLocker recovery key for a data or removable drive, then you will not be able to access the data on the encrypted drive. You will still be able to format the BitLocker encrypted drive to use the drive again, but you will lose all data on the drive.



Contents

  • Option One: If you saved your BitLocker Recovery Key to your Microsoft account
  • Option Two: If you saved your BitLocker Recovery Key to a File
  • Option Three: If you saved your BitLocker Recovery Key to USB flash drive
  • Option Four: If you Printed your BitLocker Recovery Key
  • Option Five: If you saved your BitLocker Recovery Key to Microsoft Entra ID account
  • Option Six: If BitLocker Recovery Key Held by your System Administrator
  • Option Seven: Get BitLocker Recovery Key using Command


EXAMPLE: BitLocker Recovery


BitLocker_Recovery.png





Option One

If you saved your BitLocker Recovery Key to your Microsoft account


1 You can check your OneDrive or Microsoft account online on any computer or phone to find your recovery key. (see screenshot below)

If you have a modern device that supports automatic device encryption, the recovery key will most likely be in your Microsoft account.

If the device was set up or BitLocker protection was activated by another user, the recovery key may be in that user’s Microsoft account.

OSV drive = Operating System Volume. Primary drive containing the OS.

FDV drive = Fixed Data Volume. Secondary drive. For example, other internal drive other than OS drive.

RDV drive = Removable Data Volume. This would be for removable drives like a USB flash drive or external drive.


Microsoft_account.png





Option Two

If you saved your BitLocker Recovery Key to a File


1 Locate and open the TXT file to read the text file. (see screenshots below)

USB-2.png

BitLocker_Recovery_Key.png





Option Three

If you saved your BitLocker Recovery Key to USB flash drive


1 Connect and open the USB flash drive. (see screenshots below)

2 open the TXT file on the USB to read the text file.

BitLocker_Recovery_Key.png





Option Four

If you Printed your BitLocker Recovery Key


1 Find and read the print out.




Option Five

If you saved your BitLocker Recovery Key to Microsoft Entra ID account


Azure Active Directory is now Microsoft Entra ID


1 If your device was ever signed in to an organization using a work or school email account, your recovery key may be stored in that organization's Azure AD account associated with your device. You may be able to access it directly or you may need to contact a system administrator to access your recovery key.




Option Six

If BitLocker Recovery Key Held by your System Administrator


1 If your device is connected to a domain (usually a work or school device), ask a system administrator for your recovery key.




Option Seven

Get BitLocker Recovery Key using Command


This option requires you to still be able to sign in to Windows.


1 Open Windows Terminal (Admin), and select either Windows PowerShell or Command Prompt.

2 Type the command below into Windows Terminal (Admin), and press Enter. (see screenshot below)

manage-bde -protectors -get <drive letter>:

Substitute <drive letter> in the command above with the actual drive letter (ex: "C") you want the BitLocker Recovery Key for.

For example: manage-bde -protectors -get C:


3 The BitLocker Recovery Key for this drive will be listed as the 48 digit Password.

BitLocker_Recovery_Key_command.webp



That's it,
Shawn Brink


Related Tutorials

 
Last edited:
Click to expand...
Tutorial updated to add option 7 to get the BitLocker Recovery Key of a drive using command line. :alien:
 

My Computers

System One System Two

  • OS
    Windows 11 Pro for Workstations
    Computer type
    PC/Desktop
    Manufacturer/Model
    Custom self build
    CPU
    Intel i7-8700K 5 GHz
    Motherboard
    ASUS ROG Maximus XI Formula Z390
    Memory
    64 GB (4x16GB) G.SKILL TridentZ RGB DDR4 3600 MHz (F4-3600C18D-32GTZR)
    Graphics Card(s)
    ASUS ROG-STRIX-GTX1080TI-O11G-GAMING (11GB GDDR5X)
    Sound Card
    Integrated Digital Audio (S/PDIF)
    Monitor(s) Displays
    2 x Samsung Odyssey G75 27"
    Screen Resolution
    2560x1440
    Hard Drives
    1TB Samsung 990 PRO M.2,
    4TB Samsung 990 PRO M.2,
    TerraMaster F8 SSD Plus NAS
    PSU
    Seasonic Prime Titanium 850W
    Case
    Thermaltake Core P3 wall mounted
    Cooling
    Corsair Hydro H115i
    Keyboard
    Amazon Basics Wired Full Keyboard MD005
    Mouse
    Logitech MX Master 4
    Internet Speed
    2 Gbps Download and 100 Mbps Upload
    Browser
    Chrome and Edge
    Antivirus
    Microsoft Defender
    Other Info
    Logitech Z625 speaker system,
    Logitech BRIO 4K Pro webcam,
    HP Color LaserJet Pro MFP M477fdn,
    CyberPower CP1500PFCLCD
    Galaxy S23 Plus phone
  • Operating System
    Windows 11 Pro
    Computer type
    Laptop
    Manufacturer/Model
    Surface Laptop 7 Copilot+ PC
    CPU
    Snapdragon X Elite (12 core) 3.42 GHz
    Memory
    16 GB LPDDR5x-7467 MHz
    Monitor(s) Displays
    15" HDR
    Screen Resolution
    2496 x 1664
    Hard Drives
    1 TB SSD
    Internet Speed
    Wi-Fi 7 and Bluetooth 5.4
    Browser
    Chrome and Edge
    Antivirus
    Microsoft Defender
here's a ps1 that will pull it and save it as a txt on your desktop

Code: 
$drive = "C:"   # Change this to the drive you want
$output = "$env:USERPROFILE\Desktop\BitLockerKey.txt"

# Get BitLocker protector info
$info = manage-bde -protectors -get $drive

# Extract only the Recovery Password line(s)
$recovery = $info | Select-String "Recovery Password"

# Save to desktop
$recovery | Out-File -FilePath $output -Encoding UTF8

Write-Host "Recovery key saved to: $output"

.bat as well (fixed to C: - edit if necessary)
Code: 
@echo off
set "outfile=%USERPROFILE%\Desktop\BitLocker_Protectors.txt"

manage-bde -protectors -get C: > "%outfile%"

echo Output saved to: %outfile%
pause
 
Last edited:

My Computer

System One

  • OS
    Windows 11 Pro
You must log in or register to reply here.

Similar Windows 11 Tutorials

  • Article Article
System Clear and Reset Quick Machine Recovery Settings in Windows 11
Replies
0
Views
2K
Brink
Brink
  • Article Article
System Find Computer Name of Windows 11 Device
Replies
0
Views
3K
Brink
Brink
  • Article Article
Backup and Restore Perform Point-in-time Restore of Windows 11
Replies
8
Views
5K
Brink
Brink
  • Article Article
Apps Change How Copilot Opens with Single Press of Copilot Key or Win+C Shortcut in Windows 11
Replies
0
Views
8K
Brink
Brink
  • Article Article
Devices Find Serial Number of Windows 11 PC
Replies
0
Views
5K
Brink
Brink
  • Article Article
Apps Find All Installed Apps and Programs in Windows 11
Replies
1
Views
26K
SuperJC710e
SuperJC710e
  • Article Article
Devices Check, Enable or Disable TRIM Support for SSD Drives in Windows 11
2
Replies
21
Views
16K
hsehestedt
hsehestedt

Latest Support Threads

Latest Tutorials

Back
Top Bottom