Tom’s AD Bitlocker Password Audit - Console Edition
Tom’s AD Bitlocker Password Audit – Console Edition is a free open-source Windows command line utility for querying your Active Directory for computer objects and outputting their recovery password and volume information in a Comma Separated Values format file giving you an option to import the file into your favorite spreadsheet application for analysis or for use with your internal scripts.
If you have configured your BitLocker Drive Encryption to back up recovery information for BitLocker-protected drives to Active Directory Domain Services (AD DS) the backed up BitLocker recovery information is stored in a child object of the computer object. Tom’s AD Bitlocker Password Audit – Console Edition enumerates all of the computer objects for a selected LDAP path and exports the computer name, recovery password, when created, when changed, recovery GUID, and voume GUID to a Comma Separated Values (CSV) file.
Open Source (End User License Agreement)
Creative Commons Attribution – ShareAlike 3.0 Unported License
Microsoft .NET Framework 4.5.2
Bitlocker Active Directory Recovery Password Viewer (included with the Remote Server Administration Toolkit (RSAT)
Tom’s AD Bitlocker Password Audit – Console Edition, Version 22.214.171.124 (64-bit) (MD5: 606538bb17f33af9be0ce39407b25978)
Tom’s AD Bitlocker Password Audit – Console Edition – Source Code – VB.NET, Version 126.96.36.199 (MD5: a46fefd5a53cc943a2ea15bf755b36af)
Version 1.0 – Initial Release
Version 1.1 – Added output of computer objects without Bitlocker Recovery Password + Footer Summary