Clear-BitLockerAutoUnlock
Clear-BitLockerAutoUnlock
Removes BitLocker automatic unlocking keys.
Syntax
Clear-BitLockerAutoUnlock [ <CommonParameters>]
Detailed Description
The Clear-BitLockerAutoUnlock cmdlet removes all automatic unlocking keys used by BitLocker Drive Encryption. BitLocker stores these keys for the fixed data drives of a system on a volume that hosts a BitLocker-enabled operating system volume so that it can automatically unlock the fixed and removable data volumes in a system. This makes it easier for users to access data volumes.
You can configure BitLocker to automatically unlock volumes that do not host an operating system. After a user unlocks the operating system volume, BitLocker uses encrypted information stored in the registry and volume metadata to unlock any data volumes that use automatic unlocking.
You must remove automatic unlocking keys before you can disable BitLocker by using the Disable-BitLocker cmdlet. You can use the Disable-BitLockerAutoUnlock cmdlet to remove keys for specific volumes that use automatic unlocking instead of all volumes.
For an overview of BitLocker, see BitLocker Drive Encryption Overview (https://technet.microsoft.com/en-us/library/cc732774.aspx) on TechNet.
Parameters
<CommonParameters>
This cmdlet supports the common parameters: -Verbose, -Debug, -ErrorAction, -ErrorVariable, -OutBuffer, and -OutVariable. For more information, see about_CommonParameters (https://go.microsoft.com/fwlink/p/?LinkID=113216).
Inputs
The input type is the type of the objects that you can pipe to the cmdlet.
- String
Outputs
The output type is the type of the objects that the cmdlet emits.
- BitLockerVolume
Examples
Example 1: Clear automatic unlocking keys
This command clears all automatic unlocking keys stored on the current computer.
PS C:\> Clear-BitLockerAutoUnlock