Getting bitlocker to accept my valid passwords Solved

  1.    06 Jun 2018 #1

    Getting bitlocker to accept my valid passwords


    I am not sure if this is the right place to post bitlocker issues but I was not able to find any forum titled encryption apps or similars so I have placed it here
    ======================================================
    I have attempted to use BitLocker to encrypt a bootable win 10 pro (latest anniversary edition ver) drive on numerous occasions with a NON TPM group policy setup (“Require additional authentication at startup” setting has been enabled and the “allow BitLocker without a compatible TPM” option has been selected) which uses a USB drive or a password for drive entry after encryption is successful.

    Unfortunately, I can never get to encrypt the drive because Bitlocker keeps on saying “incorrect password“ regardless of what VALID (and verified matched) password I setup with BitLocker. I have used 8 or more characters which included upper case chars, lowercase chars, numeric digits and even included non-alphanumeric chars like “$” etc.

    I have also attempted very simple password cases like only using lower case chars and numbers etc. all without success. So basically, every conceivable valid password combination has been attempted.

    These distinct simple and complex password iterations have been aligned with the following group policy selected options in order to make them acceptable to the Bitlocker system:

    Within the group policy folders, I have set up the password policy for an operating system drive for a minimum length of 8 chars and have executed ALL the following distinct policy settings combinations:

    [1] Enabled the “configure use of passwords for operating system drives” setting and have set up the password complexity setting to be “Do not allow password complexity”.

    [2] Did not configure the password policy.

    [3] Disabled the “configure use of passwords for operating system drives” setting.

    I determined that executing any of the three cases above causes the “Password must meet complexity requirements” setting to be ignored EVEN if enabled. Therefore cases [1] through [3] cover “simple” password entry scenarios like entering only 8 lower case chars etc.

    [4] Enabled the “configure use of passwords for operating system drives” setting and set up the password complexity setting to be “allow password complexity” in a system without domain controllers (my single user PC system). In this case, the complexity of the password requirement format is dependent on the whether the “password must meet complexity requirements” is enabled or not.

    In case [4] when the “password must meet complexity requirements” setting was enabled the Bitlocker system prompted to me to enter more complex password entries lower case chars and upper case chars, numerical digits and non-alphabetic char combinations (three out of the four categories are required)

    [5] The selection of the password complexity setting to “Require password complexity” was not a valid choice because I am on a single user PC system and therefore there are NO domain controllers to interface. Attempting this just yields a Bitlocker “no domain controllers complaint” at the point one is setting their password etc.

    Therefore, regardless of any or all of the group policy combinations previously specified and used in conjunction with my related valid password entries, Bitlocker never gets to the encryption stage because it ALWAYS states “INCORRECT PASSWORD”.

    I am hoping someone else has previously run into this very annoying case when setting up Bitlocker for a whole operating system drive encryption and can give me some guidance for resolution since in this password rejection state, you pretty much are going nowhere with Bitlocker.

    I have already spent over six hours on this with enormous amounts of google searches leading nowhere.

    My last closing “thinking out loud” comment at this point is,

    [1] is there the possibility of an enabled default BitLocker group policy that precludes all and any valid passwords to be ignored or rejected by Bitlocker that needs to be disabled?

    [2] Is there a Bitlocker related registry key setting that is precluding all valid passwords from being accepted by Bitlocker that needs to be modified?

    Thanks ahead for any guidance on this matter.
    EdRay
      My ComputerSystem Spec

  2.    12 Jun 2018 #2

    Solution to the Bitlocker not vaidating passwords issue


    I guess I end up solving my own question since no responses were forthcoming from this forum:

    ISSUE CLARIFIED:
    To clarify the issue, the problem is Bitlocker not correctly recognizing and validating a password phrase at the PRE-BOOT phase of the encryption process.

    This means the user entered a correct eight alpha numeric char minimum in the simplest case (no mixture of upper/lower or special chars complexity), that was accepted as an OK password during the setup part of the encryption process but once windows is restarted for the first time to initiate the encryption process, it does not recognize the previously accepted password to start the encryption process.

    This happens even though the entered password is EACTLY the SAME one Bitlocker was OK with when the user previously set it up INSIDE windows.

    This anomaly seems to affect the BitLocker app ONLY if the pass word validation is attempted from OUTSIDE of windows AKA during the PRE-BOOT phase part of the process.

    If the user entered windows successfully and from there attempted to activate an encrypted drive, a correctly entered password phrase would be accepted and validated by BitLocker REGARDLESS of the keyboard utilized.

    PROBLEM PINPOINTED/DISCOVERED:

    The problem was that there is an incompatibility between the Bit Locker app and many wireless mini keyboards that do NOT have an F12 key. These keyboards do NOT seem to have a problem with any other windows 10 app that use keyboard entries or with any other whole drive encryption programs during the password validation process (tried the password validation part successfully with four other encryption programs)

    THE RESOLUTION:

    Many of these wireless mini keyboards that don’t have an F12 key, necessitate the activation of a specific key such as F7 or the num-lock key BEFORE the password phrase entry is accepted and successfully validated by BitLocker. ONLY then, would Bit Locker detect and validate the correct passwords.

    ALTERNATE SOLUTIONS:
    a. The use of a standard size wireless or wired keyboard OR the use of a wireless mini keyboard that HAS an F12 key if the encryption program to be used is Bitlocker .
    b. The use of a different encryption program

    Hopefully this can help some other poor soul that runs into this very insidious problem yet virtually no one out there knows how to resolve.
      My ComputerSystem Spec

  3.    12 Jun 2018 #3

    edray said: View Post
    I guess I end up solving my own question since no responses were forthcoming from this forum:

    ISSUE CLARIFIED:
    To clarify the issue, the problem is Bitlocker not correctly recognizing and validating a password phrase at the PRE-BOOT phase of the encryption process.

    This means the user entered a correct eight alpha numeric char minimum in the simplest case (no mixture of upper/lower or special chars complexity), that was accepted as an OK password during the setup part of the encryption process but once windows is restarted for the first time to initiate the encryption process, it does not recognize the previously accepted password to start the encryption process.

    This happens even though the entered password is EACTLY the SAME one Bitlocker was OK with when the user previously set it up INSIDE windows.

    This anomaly seems to affect the BitLocker app ONLY if the pass word validation is attempted from OUTSIDE of windows AKA during the PRE-BOOT phase part of the process.

    If the user entered windows successfully and from there attempted to activate an encrypted drive, a correctly entered password phrase would be accepted and validated by BitLocker REGARDLESS of the keyboard utilized.

    PROBLEM PINPOINTED/DISCOVERED:

    The problem was that there is an incompatibility between the Bit Locker app and many wireless mini keyboards that do NOT have an F12 key. These keyboards do NOT seem to have a problem with any other windows 10 app that use keyboard entries or with any other whole drive encryption programs during the password validation process (tried the password validation part successfully with four other encryption programs)

    THE RESOLUTION:

    Many of these wireless mini keyboards that don’t have an F12 key, necessitate the activation of a specific key such as F7 or the num-lock key BEFORE the password phrase entry is accepted and successfully validated by BitLocker. ONLY then, would Bit Locker detect and validate the correct passwords.

    ALTERNATE SOLUTIONS:
    a. The use of a standard size wireless or wired keyboard OR the use of a wireless mini keyboard that HAS an F12 key if the encryption program to be used is Bitlocker .
    b. The use of a different encryption program

    Hopefully this can help some other poor soul that runs into this very insidious problem yet virtually no one out there knows how to resolve.
    Hi edray and welcome to Tenforums.
    Wow....that's some detective work!
    I don't use Bitlocker, so know nothing about it, but I'm sure your solution will help others, so thanks for posting it here, and glad you figured that out.
      My ComputerSystem Spec


 

Related Threads
Running cmd.exe straight from the run dialog I can change background color with either "Defaults" or "Properties." However, changing the font size has no effect. I changed the font to Consolas but can't get it beyond tiny. Also, both of the commands...
BitLocker metadata is not valid in AntiVirus, Firewalls and System Security
Dear TenForums, I have a problem with my encrypted 128GB SDcard. First of all I tried to unlock it and check automatic unlock for my computer. I did and SDcard was unlocked successfully. But next time when I switched computer on, I had to unlock...
Win 8 pro full in Hyper-V won't accept key. Says win 8 pro is an update version. Show key shows there is a Vista marker in the VM firmware. Any way round this?
Microsoft Flight Simulator X with MultiCrew Experience voice program was working good in Windows 7 Pro. Now, after installing Windows 10 Pro, FSX will not start and the fsInsider.dll file is named as the problem. Here are the messages that I get...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 15:23.
Find Us