Windows 7 BitLocker Encryption (Desktop and laptops)
Applies to Window 7 Enterprise and Windows 7 Ultimate
Note: Your system must meet the minimum system requirements.
- To turn on BitLocker,
- Click Start, select Control Panel
- From the View by: (top right) menu select Large Icons
- Click on BitLocker Drive Encryption
- BitLocker Drive Encryption will open
- Click the Turn On BitLocker button
- It will initialize and check for system requirements
- It may want to reboot once or twice
- If your computer has a TPM Module, skip to step 9. If your computer does not have a TPM Module, continue to step 5.
- Without a TPM Module, you will receive this message. Close this window and from the Run field, launch GPEdit.MSC (This will launch the Group Policy Editor).
- From the Run field, launch GPedit.msc (A utility to easily change Windows defaults to allow no TPM Module)
- Below Computer Configuration, select Administrative Templates, Windows components, BitLocker Drive Encryption, the click on Operating System Drives. Now on the right side of the screen, double click Require additional authentication at startup.
- Now, you are creating a simple policy, select Enable and select Allow BitLocker without a compatible TPM. Ignore the rest of this policy, click Apply and Ok. Close the Policy Editor.
Very Important: BitLocker will prompt you to save the Security Recovery Key, this Key must be saved to a USB flash drive, a file, or it can be printed. You will need the Recovery Key if your computer ever has a problem so keep it safe.
Do not save the Recovery Key to your hard drive, save it somewhere else or print it.
- Select where to save the recovery key
- Click the Next button
- BitLocker now asks Are you ready to encrypt the drive?
- Check the box beside Run BitLocker system check
- Click the Continue button
- A system Restart is now required,
- Click the Restart now button and let the system reboot.
- After Rebooting, the Full Hard Drive Encryption process has begun.
- It will take about an hour to complete this.
- You may use your computer while this is occurring but it will run slowly until completed.
- If your computer goes to sleep, hibernates or is shutdown, the encryption process is stopped. It will start up again once you power up your computer again.
- When BitLocker finishes encrypting the drive, it may not display any message but the hard drive light should stop flashing constantly.
- Congratulations! You have encrypted your hard drive.
Remember to keep your Recovery key safe & secure. Not with your computer.
Microsoft has this very informative video tutorial on how to use BitLocker and what is required.