AzureAD Bitlocker Key Retrieval

Prerequisites:

• Know the key ID or device name

• Be in the bitlocker group [Admins] Bitlocker Recovery Key Reader (or another group with bitlocker permissions)

How to retrieve key with key ID:

• Go to this link (Azure portal → Azure AD → Devices → Bitlocker keys)

• Enter ID in the search bar

Open

• Select “Show Recovery Key“

Open

• The key will then show on a new menu blade

• You can now type in the key or read it to a user if over the phone

How to retrieve key with the device name:

• Go to this link (Azure portal → Azure AD → Devices)

• Search for the device and select it

• Click “Bitlocker keys“ on the left

• Click “Show Recovery Key“ on the key you want to retrieve

• The key will then show on a new menu blade

• You can now type in the key or read it to a user if over the phone