New-CMTSStepOfflineEnableBitLocker

Add the Pre-provision BitLocker step in a task sequence, to enable BitLocker encryption on a drive while in Windows PE.

Syntax

New-CMTSStepOfflineEnableBitLocker
   [-Disk <Int32>]
   [-Partition <Int32>]
   [-Drive <String>]
   [-VariableName <String>]
   [-EnableSkipWhenTpmInvalid <Boolean>]
   [-EncryptionMethod <DiskEncryptionMethod>]
   -Name <String>
   [-Description <String>]
   [-ContinueOnError]
   [-Disable]
   [-Condition <IResultObject[]>]
   [-DisableWildcardHandling]
   [-ForceWildcardHandling]
   [-WhatIf]
   [-Confirm]
   [<CommonParameters>]

Description

Add the Pre-provision BitLocker step in a task sequence, to enable BitLocker encryption on a drive while in Windows PE. For more information on this task sequence step, see About task sequence steps.

Note

Run Configuration Manager cmdlets from the Configuration Manager site drive, for example PS XYZ:\>. For more information, see getting started.

Examples

Example 1

{{ Add example description here }}

{{ Add example code here }}

Parameters

-Condition

Specify a condition object to add to this step.

Type:IResultObject[]
Aliases:Conditions
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-Confirm

Prompts you for confirmation before running the cmdlet.

Type:SwitchParameter
Aliases:cf
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-ContinueOnError

Add this parameter to enable the step option Continue on error. When you enable this option, if the step fails, the task sequence continues.

Type:SwitchParameter
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-Description

Specify an optional description for this task sequence step.

Type:String
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-Disable

Add this parameter to disable this task sequence step.

Type:SwitchParameter
Aliases:DisableThisStep
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-DisableWildcardHandling

This parameter treats wildcard characters as literal character values. You can't combine it with ForceWildcardHandling.

Type:SwitchParameter
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-Disk

Specify the specific disk number to encrypt. Use this parameter with the -Partition parameter.

Type:Int32
Aliases:DestinationDisk
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-Drive

Specify the logical drive letter to encrypt. For example, C:

Type:String
Aliases:DestinationDrive
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-EnableSkipWhenTpmInvalid

Set this parameter to true to skip this step for computers that don't have a TPM or when the TPM isn't enabled.

Type:Boolean
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-EncryptionMethod

Applies to version 2006 and later. Use this parameter to specify the disk encryption mode. By default or if not specified, the step continues to use the default encryption method for the OS version.

Type:DiskEncryptionMethod
Aliases:DiskEncryptionMethod
Accepted values:DoNotSpecify, AES_128, AES_256, XTS_AES128, XTS_AES256, TotalCount
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-ForceWildcardHandling

This parameter processes wildcard characters and may lead to unexpected behavior (not recommended). You can't combine it with DisableWildcardHandling.

Type:SwitchParameter
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-Name

Specify a name for this step to identify it in the task sequence.

Type:String
Aliases:StepName
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-Partition

Specify the specific partition number to encrypt. Use this parameter with the -Disk parameter.

Type:Int32
Aliases:DestinationPartition
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-VariableName

Specify a task sequence variable to identify the logical drive letter as the destination for BitLocker.

Type:String
Aliases:DestinationVariable
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
-WhatIf

Shows what would happen if the cmdlet runs. It doesn't run the cmdlet.

Type:SwitchParameter
Aliases:wi
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False

Inputs

None

Outputs

IResultObject