Comment by Palmik
1 month ago
Does Microsoft let you encrypt the key with your password / passphrase (with a backup you can write down)?
1 month ago
Does Microsoft let you encrypt the key with your password / passphrase (with a backup you can write down)?
Technically it is possible to configure butlocker using passphrase instead of a TPM. It is not easy though. It is configured via GPO. However it is not a local account password. It is a separate passphrase which you need to provide early in boot process, similar to LUKS on linux systems. It works on windows computers without TPM, i’m not sure is it supported on systems that actually have TPM available.