Hi, I have a BitLocker question I want to turn it on but it doesn 't allow me to because I do...

[G+_Volkan Paksoy]

Hi,

 

I have a BitLocker question. I want to turn it on but it doesn't allow me to because I don't have a TPM installed. Apparently my motherboard (Asus P9X79 PRO) doesn't support TPM so I cannot go down that road.

 

The common trick is editing group policy and enabling "Require additional authentication at startup". On my laptop it worked but on my desktop it's not working. I'm assuming it's because I joined the desktop machine to my old domain long time ago. But I don't even have the domain controller anymore so I cannot change the settings there either. 

 

Any suggestions on enabling BitLocker on a domain machine whose domain controller is not available anymore?! I know it's a weird situation!

 

Thanks in advance. 

[G+_Ben Reese]

It's been a while, but can you remove the machine from the domain?

[G+_Volkan Paksoy]

yeah, I think that's a possible solution. I guess I'm just too lazy to setup a new user and change the settings etc. I've found this article: http://slashsarc.com/2012/05/disable-bitlocker-active-directory-dependency It's suggesting to turn off a few options to disable AD dependency but didn't work for me.

Now I'm leaning toward using TrueCrypt. I'm already using it for the data drives. So maybe it would be better for me in this scenario to use TC all the way.