When deploying your OS with ConfigMgr you may (I hope you do 🙂 ) enable BitLocker and saves the recovery information in Active Directory.

This script retrieves the recovery key for a single computer.

You can either just run my script or even better use it within an Orchestrator runbook.

Then you can have your helpdesk aid the user with this information without having to access or have permission to AD!

It doesn’t include any error handling which I would strongly recommend in any script you write!

I left it out to make it easier to read and understand the purpose of the script.



Leave a Reply