Detect encrypted drives and get the key
This agent procedure checks the C drive to see if it is encrypted using BitLocker and extract the BitLocker Recovery key then document the results to the asset, in the Audit module. This uses Custom Fields in VSA allowing you to create Views, Report on it, or even use the View in a Policy.
If you want to check other drives, you just need to edit the PowerShell command in the Agent Procedure to check a different disk.
This agent procedure is the latest version that performs some error checking before entering the result in the custom field. It checks for the presence of the BitLocker feature as the previous version wasn’t accurate in these cases.
Fantastic. Works as it says on the tin. Very useful utility.
This works, but the temporary text file that's created doesn't get deleted. Can that be fixed?
@Rob S, just add a line in your procedure to delete the temporary file after it's been read into the custom field.
Jeff is correct. I had taken it out of the original script for testing purposes and never put it back.
Actually, the line is there, but it doesn't seem to work? (or at least it's not doing what it should).
I figured it out - the line was there, but was just disabled (didn't realise that was a thing!) - but all now working as expected. Thanks!