![]() Network stack enabled in the UEFI firmware of client devices.Network Unlock group policy settings configured.Properly configured public/private key pairing.A DHCP server, separate from the WDS server. ![]() BitLocker Network Unlock optional feature installed on any supported server operating system.A server running the Windows Deployment Services (WDS) role on any supported server operating system.Network Unlock clients with a TPM chip and at least one TPM protector.Any supported operating system with UEFI DHCP drivers that can serve as Network Unlock clients.Currently supported Windows operating system. ![]() Network Unlock must meet mandatory hardware and software requirements before the feature can automatically unlock domain-joined systems. Rather than needing to read the StartupKey from USB media, however, the Network Unlock feature needs the key to be composed from a key stored in the TPM and an encrypted network key that is sent to the server, decrypted and returned to the client in a secure session. ![]() Network Unlock works in a similar fashion to the TPM+StartupKey at boot. Network Unlock allows BitLocker-enabled systems that have a TPM+PIN and that meet the hardware requirements to boot into Windows without user intervention. Requiring a PIN after a reboot can make it difficult to enterprises to roll out software patches to unattended desktops and remotely administered servers. Without Network Unlock, operating system volumes protected by TPM+PIN protectors require a PIN to be entered when a computer reboots or resumes from hibernation (for example, by Wake on LAN). This feature requires the client hardware to have a DHCP driver implemented in its UEFI firmware. Network Unlock enables easier management for BitLocker-enabled desktops and servers in a domain environment by providing automatic unlock of operating system volumes at system reboot when connected to a wired corporate network. Network Unlock is a BitLocker protector option for operating system volumes. ![]() This article describes how BitLocker Network Unlock works and how to configure it. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |