Important Notice: On February 29th, this community was put into read-only mode. All existing posts will remain but customers are unable to add new posts or comment on existing. Please feel to join our Community Discord for any questions and discussions.

Bitlocker Recovery Field in PDQ Inventory

Dominik Myslinski

August 11, 2017 15:39

Is it possible to show the Numerical Password in PDQ Inventory? Whether it is in the logical drive section or in a custom field?

Our goal is to scan the computers for the numerical password and have PDQ hold these passwords. Then when a user calls and says they need the key we can look at PDQ inventory for this.

Comments

3 comments

Monica KVH
August 11, 2017 20:13

Your best bet might be a custom field for this.

Finding the keys using Inventory might be tricky if the keys are not stored in a file. If they are though, you should be able to create a custom scan profile to find the files, then use PowerShell to read them so you can copy the keys to the custom field.

Of course then you just need to make sure that only the right people have access to the keys from there ;)

0
Stephen Valdinger
August 11, 2017 20:19

Honestly best practice here would be to store the keys in AD. Then you can use Delegated access to restict viewing or using them to only those with access to do so (Helpdesk staff for example). Inventory is cool, but this might not be the best tool for the job in this case.

0
Permanently deleted user
August 14, 2017 14:17

I agree with Stephen, storing keys in plaintext is probably not a good idea. I recommend setting up Microsoft BitLocker Administration and Monitoring.

0