• Since EPM 2020, it is possible to retrieve the Bitlocker key from the EPM console
EPM console showing Bitlocker key retrieval
  • You can see the recovery key
Recovery key displayed in EPM console
  • Which is the same as the key stored in AD
Key stored in Active Directory

If the key is not available in AD (GPO applied after encryption), the key will still be available in EPM

  • The encryption status is also available, which can be used for a Bitlocker activation query
Bitlocker encryption status in EPM console