Solved Undone by Bitlocker

Catnip · Feb 18, 2026

I have an issue. The IT department where I work decided to install Bitlocker on my PC without telling me. I went ahead and did a BIOS upgrade. Guess what? Bitlocker locked me out. No big deal, except that IT didn't give me the key and someone screwed up and didn't record it anywhere.

I know I am screwed.

I had a thought. Can I boot from a Linux live disk and get at the drive that way? I just need some vital files off of it. The rest is just a Windows 11 installation that I have already reinstalled to a new drive.

I know of no other way. I heard that I could get the information from my Microsoft account, but guess what else IT didn't record? I can't find my user name and I can't find the notation where I at least wrote it down.

Like I said, I am profoundly screwed, and not in the way I like to be. I hope someone can help.

barreleye · Feb 18, 2026

Linux is not going to help. You need the recovery key.

OldMainframeGuy · Feb 18, 2026

I can't help you but it sounds like your IT department needs to be taken out back behind the barn. My condolences.

neemobeer · Feb 18, 2026

Depending upon how it was configured (if it was done correctly) it will be stored in Active Directory or in Azure. This assumes they used proper tooling (MBAM, MECM or Intune). Less common they stored in a network share. if they did indeed not back it up then you are SOL.

If you can downgrade the BIOS perhaps there's a chance.

garlin · Feb 18, 2026

A competent IT staff would have warned you to temporarily suspend BitLocker, before attempting any BIOS updates.

BitLocker checks some of the BIOS markers to determine if you've "moved" the drive to a different PC. By suspending BitLocker, you could reboot even if the BIOS update changed those markers. This sounds like a tragedy.

antspants · Feb 18, 2026

So IT takes responsibility for whether or not Bitlocker is on, but not if you should update your BIOS?

Sounds like someones Nephew got a job as Uncles IT dept.

pseymour · Feb 18, 2026

If a user where I work took it upon themselves to do this, we'd be like, "well, here's a replacement laptop," and we'd take the old one.

We had an instructor, years ago, who taught PC repair classes. He somehow had a recovery CD or DVD from the manufacturer and left it in the drive. Some time later, he rebooted his PC, it booted off the optical disc, and he wiped his drive and re-installed Windows. Good times were had by all, well except him.

andrew129260 · Feb 19, 2026

Catnip said:
No big deal, except that IT didn't give me the key and someone screwed up and didn't record it anywhere.

Your IT sucks. If it is managed by active directory or intune or entra there are a lot of ways to retrieve it.

Try holding down the power for 30 full seconds at the bitlocker screen and then turn it back on. See if it suddenly doesn't ask for the bitlocker key. I have seen this before when it asks and then it randomly decides it doesnt need to anymore.

garlin said:
A competent IT staff would have warned you to temporarily suspend BitLocker, before attempting any BIOS updates.

BitLocker checks some of the BIOS markers to determine if you've "moved" the drive to a different PC. By suspending BitLocker, you could reboot even if the BIOS update changed those markers. This sounds like a tragedy.

Bios updates could be allowed by corporate IT and the local IT has no say in the matter. Ask me how I know. In any case, every known mainstream brand that I know of suspends bitlocker before updating the bios automatically so that this does not happen.

pseymour · Feb 19, 2026

andrew129260 said:
In any case, every known mainstream brand that I know of suspends bitlocker before updating the bios automatically so that this does not happen.

Yep but typically if it’s done through the OEM tools, like Dell Command | Update. If the user goes off half-cocked and does it incorrectly, not so much.

andrew129260 · Feb 19, 2026

pseymour said:
Yep but typically if it’s done through the OEM tools, like Dell Command | Update. If the user goes off half-cocked and does it incorrectly, not so much.

Gotcha, ours are done through windows update. And any oem ones I have tried so far, (dell and hp) suspend correctly so you can't screw it up. I never used dell command update though. Just either bios update from windows update or via support website manually

kelper · Feb 19, 2026

Who does the computer belong to?

Catnip · Feb 19, 2026

I tried everything that people suggested in this thread with no success, however, IT found my key in a filing cabinet after I screamed bloody murder at them, so horribleness avoided. I have unlocked the drive and cloned it like I wanted to in the first place.

So all is well.

Thank you to all who replied with suggestions. I really appreciate the help.

Who does the computer belong to?

It belongs to work, but the responsibility for its upkeep belongs to me for most things. If I had known they were putting Bitlocker on my PC, I would have prevented it. I keep a pretty good lockdown on my PC as far as IT goes, but I guess one of the junior guys decided to "improve" my PC.

He won't do that again. I am a nasty lady when I want to be.

garlin · Feb 19, 2026

A company may have legitimate concerns about data privacy, which results in BitLocker as a standard policy.

But at a minimum, they should have sent you the standard "please make a BitLocker USB recovery drive, or print out the recovery key" instructions. That's the norm when IT follows a service model where they don't control a PC 100% of the time.

OldMainframeGuy · Feb 19, 2026

Catnip said:
It belongs to work, but the responsibility for its upkeep belongs to me for most things

That's a mighty weird IT department that delegates the upkeep of work-owned computers to the users but just happens to implement Bitlocker without telling you. I work for a bank and our laptops are locked down tighter than a drum. Nothing happens to them that isn't initiated by desktop support.

XxXxX · Feb 19, 2026

if the bitlocker key was backed up then you maybe able to find it here

Find your BitLocker recovery key - Microsoft Support

Learn how to find your BitLocker recovery key in Windows.

support.microsoft.com

best of luck Steve ..

Catnip · Feb 22, 2026

OldMainframeGuy said:
That's a mighty weird IT department that delegates the upkeep of work-owned computers to the users but just happens to implement Bitlocker without telling you. I work for a bank and our laptops are locked down tighter than a drum. Nothing happens to them that isn't initiated by desktop support.

I work for a mighty weird company. I finally had to put my foot down and prevent IT from touching my computer because the junior guys keep messing up my machine and the experienced guys won't touch it because that's a junior level job. I handle almost everything for it except networking and some hard to implement security. Occaisonally, I run into an issue. I come here first before I ask IT for anything. It's easier and i usually don't have to yell at anyone.

pseymour · Feb 22, 2026

It sure is a mystery why the experienced staff wouldn't work on your machine.

Solved Undone by Bitlocker

Forum Nitwit

My Computer

Well-known member

My Computer

Well-known member

My Computer

Well-known member

My Computer

Well-known member

My Computer

Like a rolling drone.

My Computers

putting the mental back in experimental

My Computer

Well-known member

My Computers

putting the mental back in experimental

My Computer

Well-known member

My Computers

Well-known member

My Computers

Forum Nitwit

My Computer

Well-known member

My Computer

Well-known member

My Computer

Just a Computer User

My Computers

Forum Nitwit

My Computer

putting the mental back in experimental

My Computer

Similar threads