Windows update can trigger demand for Bitlocker key
Windows updates from July have led to an increase in requests for Bitlocker keys. If you haven't backed them up, you have a problem.
Problematic Windows update.
(Image: Erstellt durch KI mit Bing Designer von heise online / dmk)
After installing the July updates for Windows, users are increasingly confronted with the problem that Windows asks for the Bitlocker keys. Microsoft is working on a fix.
In the Windows Release Health notes, Microsoft writes that "devices can boot into Bitlocker recovery mode after installing the July updates". The authors continue: "This screen does not usually appear after a Windows update". The likelihood of this happening is higher if "Device encryption" has been activated in the system settings under "Privacy and security".
July updates trigger Bitlocker key request
As a result, users are faced with a screen that requires them to enter the Bitlocker recovery key from their Microsoft account. As a workaround, Microsoft suggests entering these Bitlocker keys. If you remembered to back up the Bitlocker keys beforehand, you can find them in your Microsoft account. There they can be found under "Devices", for the affected computer "Show details" and finally the "BitLocker data protection" link "Manage recovery keys".
However, the keys are only there if users have previously backed them up there using the "Manage Bitlocker" function, which is offered after entering "Bitlocker" in the start menu. Alternatively, the Bitlocker keys can also be printed out using the administration function or transferred to a USB stick, for example.
(Image: Screenshot / dmk)
Microsoft does not mention any other option. The dialog cannot be bypassed. If you don't have the key, you're stuck with it and hopefully have access to a backup of the system. Windows Home versions in particular pose a problem, as users are not even aware that Bitlocker is active. "We are actively working on a solution and expect it to be released in the coming weeks," writes Microsoft, but it is questionable whether it will be possible to restart systems whose Bitlocker keys the owners do not know.
Almost all supported operating systems are affected. Microsoft lists Windows 10 21H2 and 22H2, Windows 11 21H2, 22H2 and 23H2 as well as Server 2008, 2008 R2, 2012, 2012 R2, 2016, 2019 and 2022.
The Windows updates for the July Patchday close two security vulnerabilities in the Windows operating systems that have already been actively attacked, as well as two others that are already publicly known. They should therefore still be installed. However, admins should ensure that backups of Bitlocker keys are created.
(dmk)
