Open Repsol73 opened 11 months ago
This is what I can see from the recovery partition:
×: \windows \system32>manage-bde c: -status BitLocker Drive Encryption: Configuration Tool version 10.0.19041 Copyright (C) 2013 Microsoft Corporation. A11 rights reserved. Volume C: [Label Unknown] [Data Volume] Size: Unknown GB BitLocker Version: 2.0 Conversion Status: Unknown Percentage Encrypted: Unknown% Encryption Method: XTS-AES 256 Protection Status: Unknown Lock Status: Locked Identification Field: Unknown Automatic Unlock: Disabled Key Protectors: Numerical Password ТРМ
*: \windows \system32>manage-be c: -protectors -get
BitLocker Drive Encryption: Configuration Tool version 10.0.19041 Copyright (C) 2013 Microsoft Corporation. All rights reserved. Volume C: [Label Unknown] All Key Protectors
Numerical Password: ID: {B9CB013B-1F6D-474-83F9-960F12D73FB1} ТРМ: ID: {0A02ESDA-CDOO-41A7 -ADEO-2F57C3D7FA04) PCR Validation Profile: 7, 11
Just read this:
- If UEFI Secure Boot is enabled, it uses PCR #7 and #11
- If UEFI Secure Boot is disabled, it uses PCR #0, #2, #4 and #11
Guess I need to enable Secure Boot again and figure out how to register my Ubuntu USB session with the MOK Manager?
Something I’m failing with at the moment as manual registration gives me the error that ‘Secure Boot is not enabled on this system’ and if I enable it again and try the MOK Manager shows no hash or file/cert on the USB drive :-/
Hi There,
I wonder if you can help.
I'm trying to mount a Windows 10 partition that is currently locked by TPM. (TPM with Secure Boot ON appears to unlock the drive and try to boot the Windows partition).
Bitleaker appears to be my last hope.
When running this tool on a USB setup of Ubuntu 18.04.6 LTS (in UEFI mode) I get the below results:
Any idea what I can do to proceed please?
I currently have Secure Boot disabled i the BIOS to allow me to get to this stage.
I did notice it's showing PCR 0 at the start though?