I tried decrypting the C: drive using the force bitlocker decryption remote action, but it failed. Got an error saying the OS drive can’t be decrypted until auto-unlock is cleared for all drives.
What exactly is auto-unlock? Is it the same as locking/unlocking a drive?
103 Views
Replies (4)
Marked SolutionPending Review
Participant
1 month ago
Marked SolutionPending Review
Auto-unlock is a Bitlocker feature that automatically unlocks data drives when the OS drive is unlocked. The keys for this are stored on the OS drive itself. That’s why you can’t decrypt the Os drive while any other drive has auto-unlock enabled—it relies on those keys.
Sounds like one of your non-Os drives still has auto-unlock turned on. Just disable it, and you should be good to go.
Marked SolutionPending Review
Participant
1 month ago
Marked SolutionPending Review
There’s an option in the Force bitlocker decryption remote action to clear auto-unlock.
Just enable that when triggering the action—it’ll remove the auto-unlock keys from the Os drive, letting the decryption process complete.
Marked SolutionPending Review
Participant
1 month ago
Marked SolutionPending Review
Okay, that’s super convenient. Would’ve been a pain to handle it manually on the device.
Just to confirm—this issue only comes up for os drives, right?
Marked SolutionPending Review
Participant
1 month ago
Marked SolutionPending Review
Yep, only for Os drives, since that’s where the auto-unlock keys are stored.
Save
