We changed our name from IT Central Station: Here's why
2019-05-15T05:16:00Z

What advice do you have for others considering Microsoft BitLocker?


If you were talking to someone whose organization is considering Microsoft BitLocker, what would you say?

How would you rate it and why? Any other tips or advice?

ITCS user
Guest
1515 Answers

author avatar
Top 5Real User

I was apprehensive at first, but BitLocker has filled our needs. We wanted centralized management and ease of troubleshooting. We run a dedicated HA virtual machine. 


It works with our DHCP and DC servers to authenticate, process, and then deliver the unlock code. The process is: 1) workstation powers on, 


2) workstation asks DHCP for an address, 


3) workstation uses that address and local certificate to request and unlock code, 


4) the BitLocker server communicates with the DC securely for authorization credentials, 


5) credentials delivered and workstation unlocked. 


The whole thing takes only a couple of seconds. If there is a workstation offline, the end-user can call our help desk to retrieve the days' 25 digit unlock code stored in AD. For our traveling laptop users, they are given a BitLocker code to use so they can connect unlock their machine, and connect via VPN. If those travelers are office-connected, it all works normally.


Troubleshooting really stems around the understanding of the sequence of events and finding where the process breaks down. 


The only issue we had and were able to resolve was using an older workstation where the internal NIC did not power up quickly enough, so it would never get an address in order to request an unlock code. Rather than power off, we used <ctrl><alt><del> to reboot {with power} so the NIC obtains an address and then unlock code. Only a handful of our older machines encountered this. No newer machines have had this issue.


If machines are lost or stolen, when powered on, and *off* the network everything is encrypted & locked. This meets our security standards. Reporting is nice using System Center. I would recommend this solution.

2021-10-04T16:24:16Z
author avatar
Top 20Real User

I would recommend this solution to others. I would rate Microsoft Bitlocker a seven out of ten.

2021-08-25T11:18:21Z
author avatar
Top 20Real User

We are just a customer and an end-user. We don't have a business relationship with Microsoft. We have not gone to a server model, like running it through a centralized location. This is due to the fact that we decided to deploy it normally through creating encryption keys and sharing those keys so that we are able to access the machine using the keys themselves. It has not been fully loaded across the company as we are looking for solutions that can work for us as a main solution. What I wanted us to do, whether it was via BitLocker or Symantec or whichever tool, was to have a centralized administration so that we are able to create those keys and are able to share them. We also want to be able to control them from a centralized location. That's the type of solution I'm looking for. I do not want things to be done manually. Centralized administration is very good for that. Before I can recommend the solution, I would want to understand it fully. I'm working with my colleague to be able to understand what is its strengths and its weaknesses are. Most companies want simple tools that don't cost a lot of money. I haven't used this tool too much, and therefore can't properly evaluate it. We're currently hoping we can roll it out in a better way. That remains to be seen. From what I have seen so far, I would rate the solution at a seven out of ten.

2021-03-29T19:33:20Z
author avatar
Top 20Real User

I would recommend this solution. It is quick and neat, and it does the trick. I would rate Microsoft BitLocker a seven out of ten.

2021-02-12T14:00:08Z
author avatar
Top 20Real User

I essentially joined the company and since I got here all the laptops and endpoints have been encrypted using BitLocker. We are using IBM as management for all the data and to stop Microsoft from taking away Unbound support. We are looking for an alternative. We're curious about Symantec or endpoint encryptions that I can use with BitLocker, on top of the Symantec client that I have. We're using the latest version of the solution, from what I understand. We load the solution directly onto laptops. I would recommend the solution. However, if I find another endpoint solution, I may switch. I'm not tied to this product. I don't have a lot of experience on the solution just yet. I'm still evaluating it in a lot of ways, and discovering the features. I'd rate the solution seven out of ten.

2020-12-24T01:20:10Z
author avatar
Top 20Real User

This product is good for our Windows machines and I can recommend it to others. That said, our continued use of it is going to be reviewed. I would rate this solution a seven out of ten.

2020-12-17T16:09:55Z
author avatar
Real User

I would rate it an eight out of ten. Not a ten because the frontend could still be a little easier to use. There's still a level of effort in creating things. It could be easier. I would recommend it. From what I have seen, the setup is really easy and the ability to get up to speed is really quick. I would recommend it as being a really good tool if you are a Microsoft user.

2020-04-19T07:40:00Z
author avatar
Real User

I would recommend BitLocker only because of the economic side, not the technical side. If the features were included in the already existing licenses I would use it. If not, I would recommend other products. I would recommend Webroot because it's easier to maintain and report. I would rate BitLocker a five out of ten. BitLocker is more for big customers with everything in one console.

2020-04-05T09:13:00Z
author avatar
Top 5LeaderboardReal User

The suitability of this solution depends on the feature requirements of the organization and what they are looking for. I would rate this solution a seven out of ten.

2020-03-16T06:56:11Z
author avatar
Top 20Real User

I think it's important to involve the technical team when selecting a product and testing it out, rather than having the upper management make the decisions regarding which products to purchase. It's also important to get upfront support, technical support and maintenance, and maybe somehow get a portal where they can manage it themselves rather than it just kind of existing. I would rate this product an eight out of 10. It does what it's supposed to do and it's just the troubleshooting that's a problem.

2020-03-16T06:56:00Z
author avatar
Real User

We're just a Microsoft customer. We don't have any specific relationship with the company. Due to security concerns and company policy, we only ever use on-premises solutions. I'm not sure which version of the solution we are using. I'd rate the solution eight out of ten.

2020-03-09T08:07:58Z
author avatar
Top 5LeaderboardReal User

We have no infrastructure. Everything we have, our entire infrastructure, has moved and it's in the Microsoft Azure cloud. This solution does everything that we need it to do. It is very convenient and it fits into our strategy of having everything in a homogeneous Microsoft Cloud. It is difficult to rate anything a ten as there may be future bugs or features that may be introduced, or if someone can discover how to hack it. At this time, we feel very safe and very covered with the encryption levels that we have with BitLocker. I would rate this solution an eight out of ten.

2020-02-16T08:27:33Z
author avatar
Real User

If anyone is looking for integration solutions and has a requirement related to integration between Active Directory and integration solutions, I think that he needs to strongly go to Microsoft BitLocker. If integration with Active Directory is not mandatory for him, I think that there are many other solutions in the market that equal or are much stronger than Microsoft. I would give this solution an eight out of ten. In order to make it 9 or 10, I think that Microsoft would need to work on the desktop optimization deck that is coming with Microsoft to make the deployment much easier than what it is right now. Deployment is okay. As a partner, we can work on it without any issues, but some customers face issues deploying it by themselves because of the difficulty of understanding all of the requirements. The solution is very good and it is manageable for partners, because of their technical value or technical effort. For the level one customer help desk or administrator, however, it's not as easy. They should work on this part and make the deployment much easier.

2019-12-09T10:58:00Z
author avatar
Real User

The encryption solution was not something that I was really informed about, but I decided to study it and then propose it to my customers. I propose two different deployment models; the cloud and on-premises. The internet connection fees here are expensive, so many people prefer to deploy on-site. My advice for anybody who is implementing this solution is to have a good idea of what they want to do, prepare for it, and go for it. It is not really complex, yet it is a very rich solution to deploy. The biggest lesson that I have learned from using Microsoft BitLocker is that it can help a lot of people, but it is not very well known. People need to be familiarized with this solution through discussion. Engaging customers and proposing it to them will really help with the security of IT infrastructure in an enterprise. You can secure all of your data, the transfer of your data, and even USB keys. This may not be the best solution, but it is easy to deploy and easy to grow. I would rate this solution a seven out of ten.

2019-11-28T11:33:00Z
author avatar
Real User

I would rate this product a five out of ten.

2019-05-15T05:16:00Z
Learn what your peers think about Microsoft BitLocker. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
563,148 professionals have used our research since 2012.