Client Management Suite

 View Only

  • 1.  Can Wake on LAN bypass Bitlocker PIN screen?

    Posted Apr 24, 2014 12:02 PM

    Has anyone been able to successfully bypass the bitlocker PIN screen when using Wake on LAN?  If so, can you please describe how you went about doing this?  Any help would be appreciated.



  • 2.  RE: Can Wake on LAN bypass Bitlocker PIN screen?

    Posted Apr 24, 2014 12:27 PM

    You will most likely have to use vPro remote control via the AMT chip to provide you with physical like access that would then allow you to enter the BL PIN.



  • 3.  RE: Can Wake on LAN bypass Bitlocker PIN screen?

    Posted Apr 24, 2014 01:07 PM

    We were hoping to find a way to bypass the screen for multiple computers at once during patch/software deployments.  Microsoft appears to allow this functionality if you are using Systems Center, but I've not found any resources that are doing this using Altiris.



  • 4.  RE: Can Wake on LAN bypass Bitlocker PIN screen?

    Posted Apr 25, 2014 04:06 AM

    After reviewing http://technet.microsoft.com/en-us/library/gg682067.aspx it seems that the SCCM Client can be configured to bypass the BitLocker PIN during a restart; however, it doesn't mention doing so via its WOL options (Power Management section).

     

    Computer Agent:  Suspend BitLocker PIN entry on restart

    If the BitLocker PIN entry is configured on computers, this option can bypass the requirement to enter a PIN when the computer restarts after a software installation.

    • Always: Configuration Manager temporarily suspends the BitLocker requirement to enter a PIN on the next computer startup after it has installed software that requires a restart and initiated a restart of the computer. This setting applies only to computer restarts that are initiated by Configuration Manager and does not suspend the requirement to enter the BitLocker PIN when the user restarts the computer. The BitLocker PIN entry requirement is resumed after Windows startup.
       
    • Never: Configuration Manager does not suspend the BitLocker requirement to enter a PIN on the next computer startup after it has installed software that requires a restart. In this scenario, the software installation cannot finish until the user enters the PIN to complete the standard startup process and load Windows.


  • 5.  RE: Can Wake on LAN bypass Bitlocker PIN screen?

    Trusted Advisor
    Posted Jun 05, 2014 05:21 PM

    In any event, the bypass condition is something that has to be set while the computer is still running.  If this hasn't been configured then you will not be able to boot without the PIN.