MBAM Part 2

November 18, 2015

BitLocker Administration and Monitoring: Part 2

After you complete installation of the server components, you can test the installation by opening a web browser on a computer and going to https://<server_name>/helpdesk. You should see a screen like this:

This will serve as the portal for your help desk to access recovery keys. The Drive Recovery node is where your help desk will spend most of their time. It looks like this:

The help desk can look up the recovery key by providing this required information. The only required information is the Key ID that is displayed on the end user’s screen. The User domain and ID fields are for reporting purposes.

To test the self-service portal, go to https://server_name/selfservice. After you log in, you will see an acknowledgement that you can customize. When you click through that, you will see the area where a user can request their recovery key.

Again, the user will have to enter the displayed recovery key ID and a reason for the request. This activity is viewable from the reports on the help desk site.

Deploying the MBAM Client

Each Windows device also needs to have the MBAM client installed. The client is included on the MDOP DVD. You can use Active Directory, ConfigMgr, or any other software deployment system to install the MBAM client. A full command line parameter reference can be found here: https://technet.microsoft.com/en-us/library/dn645348.aspx. I would first recommend extracting the MSI. You can add a few more options by directly using the MSI instead of the standard EXE. Here’s the command:

MbamClientSetup.exe /extract <extraction directory> /acceptEULA=Yes

After you have the MSI, here’s a basic installation command:

msiexec /i MbamClientSetup-2.5.1100.0.msi /qn ALLUSERS=1 REBOOT=ReallySuppress

Of course, this command must be executed from the directory containing the MSI. You can also add a path in front of the MSI file if that is not possible.

After the client installation is complete, the GPO’s will take affect for configuration. We will talk about the GPO’s and recovering a key in Part 3.

Matt Tinney

Professional IT executive & business leader having decades of experience with Microsoft technologies delivering modern-day cloud & security solutions.

Contact Us

Active Directory

The Secret Role of HR Tech in M&A Success and Post-Merger Integration

Mergers and acquisitions promise growth, but the operational aftermath often reveals a deeper challenge… It involves integrating people, systems, and processes. While most attention stays on financials, contracts, and branding, the complexity of unifying HR systems

September 4, 2025

Azure

WME Microsoft 365/Azure Updates 22 August 2025

1. Exchange Online: Temporary Mailbox Access Disruption via MAPI Overview Some Exchange Online users experienced mailbox access issues via the Messaging API (MAPI) on August 20, 2025. The disruption occurred after Microsoft reverted a recent service

August 22, 2025

Active Directory

HR Data Chaos: How Centralized HRIS Solves Fragmentation in Growing Firms

Growth in your organization often exposes what scale often conceals… Disjointed HR systems stitched together via inefficient manual effort and fragile workflows. Payroll lives in one platform, benefits in another, identity data floats untethered in AD,

August 19, 2025

Active Directory

Chatbots in HR: Just Hype or the Future of Employee Support?

HR chatbots are not futuristic ambitions anymore. Certainly, they are now workflow enablers. At their core, these AI agents interface between employees and backend systems. They answer queries, trigger actions, surface personalized information, and whatnot. But

August 19, 2025

Azure

WME Microsoft 365/Azure Updates 11 August 2025

1. Excel to Block External Links to Risky File Types by Default Overview Microsoft Excel is going to block external workbook links to file types marked as unsafe by the Trust Center, and this change is

August 11, 2025

Azure

WME Microsoft 365/Azure Updates 08 August 2025

1. Final Countdown for Windows 11 Version 22H2 Enterprise & Education Overview Windows 11, version 22H2 (Enterprise, Education, and IoT Enterprise editions) is going to reach end of the servicing on October 14, 2025. The October

August 8, 2025

MBAM Part 2

Share:

Matt Tinney

Contact Us

More Posts

The Secret Role of HR Tech in M&A Success and Post-Merger Integration

WME Microsoft 365/Azure Updates 22 August 2025

HR Data Chaos: How Centralized HRIS Solves Fragmentation in Growing Firms

Chatbots in HR: Just Hype or the Future of Employee Support?

WME Microsoft 365/Azure Updates 11 August 2025

WME Microsoft 365/Azure Updates 08 August 2025

Quick Links

Industries

Contact Us

Have Questions? We Have Answers

KEEP IN TOUCH

Managed Services

Professional Services

Staffing

Industries

Resources

About

Get WME Services