This is when we started, looking at the required files to make BitLocker integrated with an Active Directory on Windows Server 2003. The following files are used for Active Directory Windows Server 2003 support for BitLocker.
Use the files below to help you verify the BitLocker configuration in Active Directory. We will use one of those files in the following example of this article
After verifying prerequisites and verifying scripts, it's time to get ready for extending Active Directory to save TPM and BitLocker recovery information in Active Directory.
The way it works is: BitLocker recovery information is stored in Computer's child object in Active Directory, which means that the Computer object serves as a container for one or more BitLocker restore objects fit with a specific Computer object. The reason why we say that one or more BitLocker recovery objects is because it can have multiple recovery keys associated with a computer using BitLocker, for example if you have encrypted multiple publications on the same computer.