Disable-BitLockerAutoUnlock
Disables automatic unlocking for a BitLocker volume.
Syntax
Disable-BitLockerAutoUnlock
[-MountPoint] <String[]>
[-Confirm]
[-WhatIf] Description
The Disable-BitLockerAutoUnlock cmdlet disables automatic unlocking for a volume protected by BitLocker Disk Encryption. The cmdlet removes automatic unlocking keys for specified volumes stored on a volume that hosts an operating system.
You can configure BitLocker to automatically unlock volumes that do not host an operating system. After a user unlocks the operating system volume, BitLocker uses encrypted information stored in the registry and volume metadata to access data volumes that use automatic unlocking.
You can specify a volume by drive letter, or you can specify a BitLocker volume object. You must remove automatic unlocking keys before you can disable BitLocker by using the Disable-BitLocker cmdlet. You can use the Clear-BitLockerAutoUnlock cmdlet to remove keys for all the volumes configured to use automatic unlocking instead of just specified volumes.
For an overview of BitLocker, see BitLocker Drive Encryption Overviewhttp://technet.microsoft.com/en-us/library/cc732774.aspx (http://technet.microsoft.com/en-us/library/cc732774.aspx) on TechNet.
Examples
Example 1: Disable automatic unlocking for a volume
PS C:\> Disable-AutoUnlock -MountPoint "E:"This command disables automatic unlocking for the specified BitLocker volume.
Parameters
-Confirm
Prompts you for confirmation before running the cmdlet.
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | False |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-MountPoint
Specifies an array of drive letters or BitLocker volume objects. The cmdlet disables automatic unlocking for the volumes specified. To obtain a BitLocker volume object, use the Get-BitLockerVolume cmdlet.
| Type: | String[] |
| Position: | 1 |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-WhatIf
Shows what would happen if the cmdlet runs. The cmdlet is not run.
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | False |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Inputs
BitLockerVolume[], String[]
Outputs
BitLockerVolume[]
Related Links
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for