Enabling bitlocker drive encryption – HP ProLiant DL360 G4 Server User Manual
Page 17
Post-installation tasks 17
2.
Map HP branded Windows operating system media to the virtual machine created, and then start the
installation of the operating system.
For more information, see the Microsoft Windows 2008 documentation or the help for Hyper-V installation
and configuration to configure guest virtual machines.
Enabling BitLocker drive encryption
To install on Microsoft Windows Small Business Server 2011 Standard or Microsoft Windows Small Business
Server 2011 Essentials:
1.
Add the BitLocker feature from the Server manager, and then reboot the server.
2.
After the operating system boots, log in as an administrator, and go to the Control Panel.
3.
Click System and Security, and then click BitLocker Drive Encryption.
4.
If the User Account Control dialog box appears, confirm the action, and then click Continue. The
BitLocker Drive Encryption page is displayed.
5.
Click Turn On BitLocker on the operating system volume. The following warnings appears:
BitLocker encryption might have a performance impact on your server
.
If your TPM (Trusted Platform Module) is not initialized, the TPM Security Hardware wizard
appears. Follow the directions to initialize the TPM. To apply the changes, you must restart or shut
down the computer.
6.
On the Save the recovery password page, the following options appear:
o
Save the password on a USB drive - This option saves the password to a USB flash drive.
o
Save the password in a folder - This option saves the password to a folder on a network drive or
other location.
o
Print the password - This option prints the password.
Use one or more of these options to preserve the recovery password. For each option, select the option
and follow the wizard steps to set the location for saving or printing the recovery password.
7.
When you have finished saving the recovery password, click Next. The Encrypt the selected disk volume
page appears.
IMPORTANT:
The recovery password is required in the event the encrypted disk is moved to
another computer, or changes are made to the system startup information. This password is so
important that HP recommends that you make additional copies of the password and store it in a
safe place apart from the computer to assure access to your data. Your recovery password is
needed to unlock the encrypted data on the volume if BitLocker enters a locked state. This recovery
password is unique to this particular BitLocker encryption. You cannot use it to recover encrypted
data from any other BitLocker encryption session.
8.
Confirm that the Run BitLocker System check box is selected, and then click Continue.
9.
Click Restart Now. The computer restarts and BitLocker verifies if the computer is BitLocker-compatible
and ready for encryption. If it is not, an error message alerting you to the problem appears.
10.
If the computer is ready for encryption, the Encryption in Progress status bar appears. You can monitor
the ongoing completion status of the disk volume encryption by dragging the mouse cursor over the
BitLocker Drive Encryption icon in the notification area at the bottom of the screen.
By completing this procedure, you have encrypted the operating system volume and created a recovery
password unique to this volume. The next time you log in, you will see no change. If the TPM changes or