The confidentiality and protection of the user’s data is fundamental in any system. In addition, this section is very important when working with Windows Server. Since the fall of sensitive files into the wrong hands can cause serious damage. For this reason, it is highly recommended encrypting the data present on the hard disk. Fortunately, Windows Server has its own data encryption infrastructure. This technology is called BitLocker, BDE-BitLocker Drive Encryption. Consequently, it is possible to encrypt entire volumes. This way, if you lose access to the device, the data will remain encrypted. For this reason, today we will see how to enable BitLocker in Windows Server 2019/2016.
BitLocker. The Windows Encryption Technology.
BitLocker makes use of the Reliable Platform Module technology which allows for greater security in case of an external attack. It is used to validate the booting of the server. In addition, it guarantees that the hard disk is in optimal security and operation conditions. BitLocker uses 5 operational modes in its operation:
- TPM + PIN + Password: The system encrypts the information with TPM. Additionally, the administrator must enter his or her PIN and password to gain access.
- TPM+Password: The system encrypts the information with TPM and the administrator must provide a password.
- TPM + PIN: The system encrypts the information with TPM and the administrator must provide his access ID.
- Password: The administrator must provide the password to access management.
- TPM: No action is required from the administrator.
How to Install BitLocker on Windows Server 2019/2016
The first thing you have to do is open the Server Manager. Once there, click on add roles and features.
Then select Role-based and features-based installation:
As usual in this type of installation, select the server.
Please skip the window referring to Roles. Then, in the Features window, scroll down to get BitLocker Drive Encryption
When you click on the corresponding box, a window with the necessary features for the installation will be displayed.
Back to the previous window, press next to continue the installation.
Below you will see a summary of the installation. Please press Install.
After a few moments, the installation will be completed. Please note that you must reboot the server to complete the process.
Finally, in this simple way we have seen how to enable BitLocker in Windows Server 2019/2016. In addition, it is our intention to increase the security of your server. All right, that’s it for today. I can’t say goodbye without inviting you to see our post about importing and exporting the security policy in Windows Server 2019/2016. Goodbye