Manage Fixed Drives with Bitlocker

Practice Labs Module
Time
15 minutes
Difficulty
Intermediate

Welcome to the "Manage Fixed Drives with BitLocker" Practice Lab. In this module you will be provided with the instructions and devices needed to develop your hands-on skills.

Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Overview

Introduction

Welcome to the Manage Fixed Drives with BitLocker Practice Lab. In this module you will be provided with the instructions and devices needed to develop your hands-on skills.

Learning Outcomes

In this module, you will complete the following exercises:

  • Exercise 1 - Configure BitLocker on Data Drives
  • Exercise 2 - Configure BitLocker on System Drives

After completing this lab, you will be able to:

Configure BitLocker on Windows 10 to encrypt entire disk volumes - data and system drives

Exam Objectives

The following exam objectives are covered in this lab:

  • Understand encryption - Understand BitLocker

Lab Duration

It will take approximately 45 minutes to complete this lab.

Exercise 1 - Configure BitLocker on Data Drives

BitLocker is a full disk encryption security feature that provides protection for the operating system and user data. The protection provided by BitLocker remains enforced on the encrypted disk whether the computer is turned on or off. Therefore, this technology ensures confidentiality of disk contents even against ‘offline attacks’ made by disabling Windows or physically removing the hard disk to view the contents on another computer.

Before you begin encrypting disk volumes on your computer, BitLocker Drive Encryption is supported on Windows 10 Pro and Windows 10 Enterprise

BitLocker uses the Trusted Platform Module (TPM) that provides integrated protection for Windows and data files during the boot phase of the operating system. TPM is a microchip embedded on a system motherboard and can be enabled using the BIOS of the computer system.

A Windows 10 computer’s hard drive must contain two partitions: a system partition which contains the files for starting Windows and the partition that hosts C:\Windows where the operating system data reside. When BitLocker is initialized, it will create the necessary partition for your computer. NTFS is the supported file system when a drive is encrypted.

In this exercise, you will create an additional disk volume considered as a data volume and protect it with BitLocker.

Exercise 2 - Configure BitLocker on System Drives

BitLocker is a full disk encryption security feature that provides protection for the operating system and user data. Operating system drives contains critical information about the organization’s users as in the case of servers running Active Directory Domain Services. Application servers that run a messaging platform host the database about users’ email messages which will create a problem if the disk volume of the server is compromised or stolen. Although corporate servers are secured in data centers, it is essential to apply an additional layer of security by encrypting the system drive of Windows.

In this exercise, you will encrypt the system drive of a Windows 10 computer.

Learning Partner
Comprehensive Learning

See the full benefits of our immersive learning experience with interactive courses and guided career paths.