The following link contains steps for Windows 10: Now, each time the user boots the system, they receive a BitLocker preboot security prompt requiring the PIN to be entered before access to the operating system is granted.The BitLocker Drive Encryption status shows the "Key Protectors:" as "Numerical Password," "TPM and PIN.".Excluding the quotation marks, enter the command "manage-bde -status.".Hit the Enter key again to save the PIN confirmation. Hit the Enter key to save the PIN, and you are prompted to enter the PIN again to confirm.The cursor will not register the keystrokes as you enter the number. Enter a number between four and seven digits. Excluding the quotation marks, enter the command "manage-bde -protectors -add c: -TPMAndPIN".Open an elevated Command Prompt window with administrator rights.Click the "Apply" button and then the "OK" button to save the changes in the Local Group Policy Editor.For the choice of "Configure TPM startup key and PIN:", choose "Allow startup key and PIN with TPM.".For the choice of "Configure TPM startup key:", choose "Allow startup key with TPM.".For the choice of "Configure TPM startup PIN:", choose "Require startup PIN with TPM.".For the choice of "Configure TPM startup:", choose "Allow TPM.".
![itLocker Drive Encryption bitlocker windows 8.1 download itLocker Drive Encryption bitlocker windows 8.1 download](https://www.isumsoft.com/images/windows-10/unlock-bitlocker-encrypted-drive-in-windows-10/right-click-bitlocker-drive.png)
Uncheck the box for "Allow BitLocker without a compatible TPM.".Make sure the "Enabled" option is chosen so that all other options below will be active.In the right pane, double-click "Require additional authentication at startup" and a popup box will open.Navigate to Computer Configuration > Administrative Templates > Windows Components > BitLocker Drive Encryption > Operating System Drives.Open the Group Policy Editor by using the "Run…" executable, typing in "gpedit.msc" and clicking the "OK" button.Use the preferred Microsoft process to Enable BitLocker and encrypt the entire disk containing the Operating System.Boot into the BIOS again and use the security features of your system’s BIOS to activate the TPM.Check the box to clear the TPM, apply changes, and exit the BIOS.Use the security features of your system’s BIOS to enable the TPM.The details are written for the audience of a system administrator. The process below is an advanced procedure and should only be attempted with the knowledge of the system administrator.
![itLocker Drive Encryption bitlocker windows 8.1 download itLocker Drive Encryption bitlocker windows 8.1 download](https://www.thewindowsclub.com/wp-content/uploads/2013/04/BitLockerToGo04.png)
It can only be enabled on systems with a Trusted Platform Module (TPM) chip, typically a Latitude, OptiPlex, or Dell Precision system. This feature is available in Windows 7 Enterprise and Ultimate, and Windows 8 Enterprise and Ultimate. How to Create a BitLocker Pre-Boot Security Prompt Requiring a Personal Identification Number (PIN)Īs an extra layer of security, an administrator may choose to create a BitLocker preboot security prompt requiring a Personal Identification Number (PIN).
![itLocker Drive Encryption bitlocker windows 8.1 download itLocker Drive Encryption bitlocker windows 8.1 download](https://www.diskpart.com/screenshot/en/pro/bitlocker/bitlocker-tools.png)
The following article contains information about creating and using BitLocker with a Personal Identification Number (PIN).