| external help file | Module Name | online version | schema |
|---|---|---|---|
DSInternals.PowerShell.dll-Help.xml |
DSInternals |
2.0.0 |
Reads BitLocker recovery passwords from a ntds.dit file.
Get-ADDBBitLockerRecoveryInformation -RecoveryGuid <Guid> -DatabasePath <String> [-LogPath <String>]
[<CommonParameters>]
Get-ADDBBitLockerRecoveryInformation -ComputerName <String> -DatabasePath <String> [-LogPath <String>]
[<CommonParameters>]
Get-ADDBBitLockerRecoveryInformation [-All] -DatabasePath <String> [-LogPath <String>] [<CommonParameters>]
Get-ADDBBitLockerRecoveryInformation -DistinguishedName <String> -DatabasePath <String> [-LogPath <String>]
[<CommonParameters>]
Get-ADDBBitLockerRecoveryInformation -ObjectGuid <Guid> -DatabasePath <String> [-LogPath <String>]
[<CommonParameters>]
BitLocker recovery information (msFVE-RecoveryInformation objects) can be used to unlock volumes encrypted using BitLocker Drive Encryption.
PS C:\> Get-ADDBBitLockerRecoveryInformation -All -DatabasePath '.\ADBackup\Active Directory\ntds.dit'
<# Sample Output:
ComputerName RecoveryGuid RecoveryPassword
------------ ------------ ----------------
PC01 704b1998-54ea-4899-8f46-81628b6a0731 366561-423260-035024-137224-631070-580492-357566-596908
PC02 caeaa622-6c6a-4d2b-8e33-29e46df659af 782066-216356-283624-291397-405614-078166-321530-943804
#>Retrieves all BitLocker recovery keys from an AD database.
Indicates that all BitLocker recovery keys should be read from the selected database.
Type: SwitchParameter
Parameter Sets: All
Aliases:
Required: True
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseSpecifies the name of the computer whose BitLocker recovery keys should be fetched from the database.
Type: String
Parameter Sets: ByComputerName
Aliases: Computer, SamAccountName
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName, ByValue)
Accept wildcard characters: FalseSpecifies the path to a domain database, for instance, C:\Windows\NTDS\ntds.dit.
Type: String
Parameter Sets: (All)
Aliases: Database, DBPath, DatabaseFilePath, DBFilePath
Required: True
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseSpecifies the distinguished name of the recovery key to fetch from the database.
Type: String
Parameter Sets: ByDN
Aliases: dn
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: FalseSpecifies the path to a directory where the transaction log files are located. For instance, C:\Windows\NTDS. The default log directory is the one that contains the database file itself.
Type: String
Parameter Sets: (All)
Aliases: Log, TransactionLogPath
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: FalseSpecifies the recovery key object identifier to search for, for instance, 9a36024b-3e97-4305-8315-5ed0ff646367.
Type: Guid
Parameter Sets: ByGuid
Aliases: Guid
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: FalseSpecifies the recovery key identifier to search for, for instance, 11c43ee8-b9d3-4e51-b73f-bd9dda66e29c.
Type: Guid
Parameter Sets: ByKeyIdentifier
Aliases: KeyIdentifier, KeyId, RecoveryId, KeyProtectorId
Required: True
Position: Named
Default value: None
Accept pipeline input: True (ByPropertyName)
Accept wildcard characters: FalseThis cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.