Category filter

Script to Check Encryption Status of drives on Windows

Encryption is one of the fundamental ways of protecting the data stored on the devices. Most organizations prefer device encryption using BitLocker to prevent unauthorized access to corporate data on Windows 10 devices. Yet, if you need to verify the encryption status of the devices, you can get it done with the help of terminal commands. The Execute Custom Script action enables administrators to execute customized script commands directly from the UEM console.


The Sample Scripts provided below are adapted from third-party Open-Source sites.

Batch Script

manage-bde is a command-line tool that helps you to perform BitLocker operations from the Terminal. This command can also be used to retrieve the encryption status.

PowerShell Script

You can obtain the encryption status of a volume encrypted with BitLocker Drive Encryption by using the following custom script.


  • It is recommended to manually validate the script execution on a system before executing the action in bulk.
  • Hexnode will not be responsible for any damage/loss to the system on the behavior of the script.
  • Sample Script Repository