This article describes the process to follow to request a BitLocker recovery key from the Microsoft BitLocker Administration and Monitoring (MBAM) web application.
Step-by-step guide
Consider the following scenario:
A user modifies the boot order on their BitLocker encrypted laptop. Following modification of the boot order, the computer prompts for a recovery key upon startup. Below are the instructions to obtain a recovery key that will allow the computer to boot.
- Open a Chrome and navigate the MBAM web application at: https://euc-svc02.adsroot.itcs.umich.edu:8218/Default.aspx
- When prompted to log on, enter your Platform as a Service administrator credential. For the user name, be sure to preface the account name with "UMROOT\".
- Once logged on to the MBAM web application, select Drive Recovery from the list of options on the left nav bar:T
- In the Drive Recovery screen, ignore the fields for User Domain and User ID. On the computer that requires a recovery key, there should a Key ID that is displayed on the console. Enter the first 8 characters of the Key ID in the Key ID field, and select a Reason for Drive Unlock in the drop down menu:
- The MBAM web application should return the recovery key that you can enter at the console of the affected computer.
Related articles