How to Administer MBAM Using PowerShell
Microsoft BitLocker Administration and Monitoring (MBAM) provides the following set of Windows PowerShell cmdlets. Administrators can use these cmdlets to perform various MBAM server tasks from the command line rather than from the MBAM console. These cmdlets let administrators automate typical MBAM tasks.
| Name | Description |
|---|---|
Adds a new hardware model to the MBAM hardware inventory and can specify whether the hardware is supported or unsupported for BitLocker drive encryption. |
|
Requests an MBAM recovery key to let users unlock a computer or encrypted drive. |
|
Gets a master hardware inventory with data stating whether hardware models are compatible or incompatible with BitLocker drive encryption. |
|
Provides the ability to help users, whose TPM (Trusted Platform Module) has locked them out and will no longer accept their PIN by providing a TPM Owner Password, by which users can manage their TPM. |
|
Installs the Microsoft BitLocker Administration and Monitoring features that provide advance group policy, encryption, key recovery, and compliance reporting tools. |
|
Removes the hardware models from the hardware inventory. |
|
Allows management of a master hardware inventory to designate whether or not hardware models are capable or incapable to perform BitLocker encryption. |
|
Removes the Microsoft BitLocker Administration and Monitoring features that provide advanced policy, encryption, key recovery, and compliance reporting tools. |