Providing a user with a recovery key for hard drives encrypted with BitLocker

To send a user a recovery key for a system hard drive that was encrypted using BitLocker:

  1. Open the Administration Console of Kaspersky Security Center.
  2. In the Managed devices folder of the Administration Console tree, open the folder with the name of the administration group that includes the computer of the user requesting access to the encrypted drive.
  3. In the workspace, select the Devices tab.
  4. On the Devices tab, select the computer belonging to the user requesting access to the encrypted drive.
  5. Right-click to open the context menu and select Grant access to devices and data in offline mode.

    The Grant access to devices and data in offline mode window opens.

  6. In the Grant access to devices and data in offline mode window, select the Access to a BitLocker-protected system drive tab.
  7. Prompt the user for the recovery key ID indicated in the BitLocker password input window, and compare it with the ID in the Recovery key ID field.

    If the IDs do not match, this key is not valid for restoring access to the specified system drive. Make sure that the name of the selected computer matches the name of the user's computer.

  8. Send the user the key that is indicated in the Recovery key field.

To send a user a recovery key for a non-system hard drive that was encrypted using BitLocker:

  1. Open the Administration Console of Kaspersky Security Center.
  2. In the Administration Console tree, select the AdditionalEncryption and data protectionEncrypted devices folder.

    The workspace displays a list of encrypted devices.

  3. In the workspace, select the encrypted device to which you need to restore access.
  4. Right-click to bring up the context menu and select Get access key to specified encrypted device.

    This opens the Restore access to a drive encrypted with BitLocker window.

  5. Prompt the user for the recovery key ID indicated in the BitLocker password input window, and compare it with the ID in the Recovery key ID field.

    If the IDs do not match, this key is not valid for restoring access to the specified drive. Make sure that the name of the selected computer matches the name of the user's computer.

  6. Send the user the key that is indicated in the Recovery key field.
Page top