Bitlocker - AD Backup Audit
Summary
This document displays Bitlocker key protectors backed up to Active Directory.
Dependencies
- SEC - Encryption - Script - Bitlocker - Audit AD Key Protector Backups
- SEC - Encryption - Custom Table - plugin_proval_ad_bitlocker_keyprotectors
Columns
| Column | Description |
|---|---|
| DCComputerID | The ComputerID of the audited domain controller. |
| DC | The name of the audited domain controller. |
| Client | The client of the audited domain controller. |
| KeyProtectorDN | The full DN of the audited key protector. |
| KeyProtectorName | The name of the audited key protector. |
| Created | The date and time that the key protector was backed up to AD. |
| Deleted | True or False indicating if the key protector was deleted from AD. |
| RecoveryGUID | The GUID of the key protector (KeyProtectorID on the local machine). |
| RecoveryPassword | The recovery password (if applicable) for the key protector. |
| VolumeGUID | The GUID of the volume that is protected by the key protector. |
| ParentDN | The full DN of the parent of the key protector object in AD (generally a computer object). |
| ParentSID | The SID of the parent of the key protector object in AD (generally a computer object). |
| LastScan | The date and time that the audit was last run. |