Issue automating bitlocker deployment via kace script & manage-bde
07/06/2018 1969 views
We are in the works to make sure all our devices are bitlocked and encrypted. This has always been a manual process when re-imaging, but we have a good number of devices that need to be bitlocked in remote locations. When we do it manually we save the bitlock key in a text file in a network folder. I would like to script this process and make it auto-save the key file to the same network drive. I have a script that works well as a .bat file but is giving me an error I can pinpoint as to the cause. Anyone have any ideas?
Here is the error:
Running as credntials provided Creating process returned non-zero: %systemdrive%\Windows\System32\manage-bde.exe -status C: -protectionaserrorlevel: (4294967295) Error Code: -1 Status Code: 0 Creating process returned non-zero: %systemdrive%\Windows\System32\manage-bde.exe -protectors -add %SystemDrive% -tpm: (4294967295) Error Code: -1 Status Code: 0
Here is the script:
Community Chosen Answer
Please log in to answer
The manage-bde.exe command is not available in the 32bit context where the AMPAgent is running. You need to use %windir%\
sysnative\ manage-bde.exe instead.
Answered 07/17/2018 by: chucksteel