Event ID 24620 — BitLocker Startup
Updated: November 30, 2007
Applies To: Windows Server 2008
When a computer protected with BitLocker Drive Encryption is restarted, the early startup components perform a series of integrity checks and, if the system passes, attempts to retrieve the needed key information to unlock any BitLocker-protected volumes. Success depends on the availability of configured key protectors, such as the TPM or a user-supplied PIN, and the existence of volume metadata stored within the encrypted drive.
If Windows cannot unlock the Windows operating system volume, BitLocker enters recovery mode. If the user can supply a recovery password or insert a USB flash drive with a recovery key, BitLocker will unlock the volume.
After the Windows operating system volume has been successfully unlocked, BitLocker uses encrypted information stored in the volume metadata and Windows registry to unlock any data volumes configured for automatic unlocking.
|Product:||Windows Operating System|
|Message:||Encrypted volume check: Volume information on %2 cannot be read.|
Use the BitLocker Repair Tool
BitLocker entered recovery, and a user has successfully completed the recovery process by using a recovery key (stored on a USB flash drive) or a recovery password (entered manually at the recovery screen). The most recent recovery session happened because volume information could not be correctly retrieved from the volume metadata.
Although data corruption can occur, it is rare. Data corruption can be caused by hardware failure or physical damage.
If a volume is damaged, you can use the BitLocker Repair Tool to salvage any recoverable data. Using the BitLocker Repair Tool is an advanced procedure that should be performed by an experienced administrator.
For more information about using the BitLocker Repair Tool, see "How to use the BitLocker Repair Tool to help recover data from an encrypted volume in Windows Vista" in the Microsoft Knowledge Base at http://go.microsoft.com/fwlink/?LinkId=99556.
To verify that BitLocker has started successfully:
- If the computer is not running, start the computer.
- If BitLocker has been configured to use a USB flash drive, insert the USB flash drive. If BitLocker has been configured to use a PIN, enter your PIN when prompted.
- Verify that Windows Welcome Screen, Logon Screen or Desktop appears. This indicates that BitLocker has correctly unlocked the Windows operating system volume.
- Log on to Windows and access any data volumes that are encrypted with BitLocker.
Note: Data volumes can be configured to be automatically unlocked or to require manual unlocking.