• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Windows 11 Bitlocker?

ThrashZone

ThrashZone

Joined
Feb 20, 2020
Messages
9,340 (6.13/day)
Location
Louisiana
System Specs
System Name Ghetto Rigs z490|x99|Acer 17 Nitro 7840hs/ 5600c40-2x16/ 4060/ 1tb acer stock m.2/ 4tb sn850x
Processor 10900k w/Optimus Foundation | 5930k w/Black Noctua D15
Motherboard z490 Maximus XII Apex | x99 Sabertooth
Cooling oCool D5 res-combo/280 GTX/ Optimus Foundation/ gpu water block | Blk D15
Memory Trident-Z Royal 4000c16 2x16gb | Trident-Z 3200c14 4x8gb
Video Card(s) Titan Xp-water | evga 980ti gaming-w/ air
Storage 970evo+500gb & sn850x 4tb | 860 pro 256gb | Acer m.2 1tb/ sn850x 4tb| Many2.5" sata's ssd 3.5hdd's
Display(s) 1-AOC G2460PG 24"G-Sync 144Hz/ 2nd 1-ASUS VG248QE 24"/ 3rd LG 43" series
Case D450 | Cherry Entertainment center on Test bench
Audio Device(s) Built in Realtek x2 with 2-Insignia 2.0 sound bars & 1-LG sound bar
Power Supply EVGA 1000P2 with APC AX1500 | 850P2 with CyberPower-GX1325U
Mouse Redragon 901 Perdition x3
Keyboard G710+x3
Software Win-7 pro x3 and win-10 & 11pro x3
Benchmark Scores Are in the benchmark section
Hi,
Read some wild stuff about bitlocker on 11 and in general on past 10 & 8 I suppose was referred to
But someone posted this script he uses to disable bitlocker
Well I wasn't expecting how much it would decrypt lol but reading the code I guess not
Any input @W1zzard

fsutil behavior set disableencryption 1
cipher /d /s:C:\
reg add "HKLM\Software\Policies\Microsoft\Windows\EnhancedStorageDevices" /v "TCGSecurityActivationDisabled" /t REG_DWORD /d "1" /f
sc config BDESVC start= disabled
sc config "EFS" start= disabled
Click to expand...
 
W1zzard

W1zzard

Administrator
Staff member
Joined
May 14, 2004
Messages
27,044 (3.71/day)
System Specs
Processor Ryzen 7 5700X
Memory 48 GB
Video Card(s) RTX 4080
Storage 2x HDD RAID 1, 3x M.2 NVMe
Display(s) 30" 2560x1600 + 19" 1280x1024
Software Windows 10 64-bit
Hmm.. what issues have you been seeing?

TCGSecurityActivationDisabled is useful without Bitlocker, too. It makes sure that Windows doesn't activate TCG/Opal encryption on SSDs that support it. I have that as standard part of my setup scripts

The rest seems to just disable disk encryption, the related services
 
ThrashZone

ThrashZone

Joined
Feb 20, 2020
Messages
9,340 (6.13/day)
Location
Louisiana
System Specs
System Name Ghetto Rigs z490|x99|Acer 17 Nitro 7840hs/ 5600c40-2x16/ 4060/ 1tb acer stock m.2/ 4tb sn850x
Processor 10900k w/Optimus Foundation | 5930k w/Black Noctua D15
Motherboard z490 Maximus XII Apex | x99 Sabertooth
Cooling oCool D5 res-combo/280 GTX/ Optimus Foundation/ gpu water block | Blk D15
Memory Trident-Z Royal 4000c16 2x16gb | Trident-Z 3200c14 4x8gb
Video Card(s) Titan Xp-water | evga 980ti gaming-w/ air
Storage 970evo+500gb & sn850x 4tb | 860 pro 256gb | Acer m.2 1tb/ sn850x 4tb| Many2.5" sata's ssd 3.5hdd's
Display(s) 1-AOC G2460PG 24"G-Sync 144Hz/ 2nd 1-ASUS VG248QE 24"/ 3rd LG 43" series
Case D450 | Cherry Entertainment center on Test bench
Audio Device(s) Built in Realtek x2 with 2-Insignia 2.0 sound bars & 1-LG sound bar
Power Supply EVGA 1000P2 with APC AX1500 | 850P2 with CyberPower-GX1325U
Mouse Redragon 901 Perdition x3
Keyboard G710+x3
Software Win-7 pro x3 and win-10 & 11pro x3
Benchmark Scores Are in the benchmark section
Hi,
Here is the reply that started this since you made a thread about it might as well have it here too :)

TairikuOkami said:
I have learnt my lesson about MS, as soon as I install Windows, disabling this junk is part of my routine:
Code: 
fsutil behavior set disableencryption 1
cipher /d /s:C:\
reg add "HKLM\Software\Policies\Microsoft\Windows\EnhancedStorageDevices" /v "TCGSecurityActivationDisabled" /t REG_DWORD /d "1" /f
sc config BDESVC start= disabled
sc config "EFS" start= disabled


What is the point of the whole disk encryption? I encrypt important files, more than once actually.

LoL, that is like jumping out of a plane and then finding out, that they forgot to give you a parachute.
Encryption is a double edge sword, just like 2FA, once you are locked out, your life can be ruined, literally.
I have seen people loosing jobs, diploma, even family photos, because of those. And there are worse cases.
Click to expand...
Since I really don't know much about bitlocker besides some rude basics and I never want it to work
Only issue was my surprise what the script decrypted I was not expecting it

So question is did I mess up any system files seeing it decrypted quiet a few ?
 
R-T-B

R-T-B

Supporter
Joined
Aug 20, 2007
Messages
20,776 (3.41/day)
System Specs
System Name Pioneer
Processor Ryzen R9 7950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage 2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64
I don't think disk encryption is on by default. They certainly aren't on mine. This would just shut down the services to provide it someday.
 
ThrashZone

ThrashZone

Joined
Feb 20, 2020
Messages
9,340 (6.13/day)
Location
Louisiana
System Specs
System Name Ghetto Rigs z490|x99|Acer 17 Nitro 7840hs/ 5600c40-2x16/ 4060/ 1tb acer stock m.2/ 4tb sn850x
Processor 10900k w/Optimus Foundation | 5930k w/Black Noctua D15
Motherboard z490 Maximus XII Apex | x99 Sabertooth
Cooling oCool D5 res-combo/280 GTX/ Optimus Foundation/ gpu water block | Blk D15
Memory Trident-Z Royal 4000c16 2x16gb | Trident-Z 3200c14 4x8gb
Video Card(s) Titan Xp-water | evga 980ti gaming-w/ air
Storage 970evo+500gb & sn850x 4tb | 860 pro 256gb | Acer m.2 1tb/ sn850x 4tb| Many2.5" sata's ssd 3.5hdd's
Display(s) 1-AOC G2460PG 24"G-Sync 144Hz/ 2nd 1-ASUS VG248QE 24"/ 3rd LG 43" series
Case D450 | Cherry Entertainment center on Test bench
Audio Device(s) Built in Realtek x2 with 2-Insignia 2.0 sound bars & 1-LG sound bar
Power Supply EVGA 1000P2 with APC AX1500 | 850P2 with CyberPower-GX1325U
Mouse Redragon 901 Perdition x3
Keyboard G710+x3
Software Win-7 pro x3 and win-10 & 11pro x3
Benchmark Scores Are in the benchmark section
Hi,
Try the script the decrypt is a mile long lol

W1zzard said:
Hmm.. what issues have you been seeing?

TCGSecurityActivationDisabled is useful without Bitlocker, too. It makes sure that Windows doesn't activate TCG/Opal encryption on SSDs that support it. I have that as standard part of my setup scripts

The rest seems to just disable disk encryption, the related services
Click to expand...
Is it on this list ?
www.techpowerup.com

Windows 10 Tweaks for VGA Benchmark

Updated for Windows 10 21H2 Update - Install without Internet, so you can create an offline user - name the user "TPU" (the user will be deleted at the end of the scripts and you're using "Administrator") - Install VGA driver, from USB, still without network, so Windows Update won't install a...
www.techpowerup.com www.techpowerup.com
 
Last edited:
W1zzard

W1zzard

Administrator
Staff member
Joined
May 14, 2004
Messages
27,044 (3.71/day)
System Specs
Processor Ryzen 7 5700X
Memory 48 GB
Video Card(s) RTX 4080
Storage 2x HDD RAID 1, 3x M.2 NVMe
Display(s) 30" 2560x1600 + 19" 1280x1024
Software Windows 10 64-bit
ThrashZone said:
Hi,
Try the script the decrypt is a mile long lol


Is it on this list ?
www.techpowerup.com

Windows 10 Tweaks for VGA Benchmark

Updated for Windows 10 21H2 Update - Install without Internet, so you can create an offline user - name the user "TPU" (the user will be deleted at the end of the scripts and you're using "Administrator") - Install VGA driver, from USB, still without network, so Windows Update won't install a...
www.techpowerup.com www.techpowerup.com
Click to expand...
Yeah, Ctrl+F, "TCG"
 
R-T-B

R-T-B

Supporter
Joined
Aug 20, 2007
Messages
20,776 (3.41/day)
System Specs
System Name Pioneer
Processor Ryzen R9 7950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage 2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64
ThrashZone said:
Hi,
Try the script the decrypt is a mile long lol
Click to expand...
Yeah, not seeing that here.

Maybe it's because my SSDs are using their opal managed hardware encryption, no idea.
 
ThrashZone

ThrashZone

Joined
Feb 20, 2020
Messages
9,340 (6.13/day)
Location
Louisiana
System Specs
System Name Ghetto Rigs z490|x99|Acer 17 Nitro 7840hs/ 5600c40-2x16/ 4060/ 1tb acer stock m.2/ 4tb sn850x
Processor 10900k w/Optimus Foundation | 5930k w/Black Noctua D15
Motherboard z490 Maximus XII Apex | x99 Sabertooth
Cooling oCool D5 res-combo/280 GTX/ Optimus Foundation/ gpu water block | Blk D15
Memory Trident-Z Royal 4000c16 2x16gb | Trident-Z 3200c14 4x8gb
Video Card(s) Titan Xp-water | evga 980ti gaming-w/ air
Storage 970evo+500gb & sn850x 4tb | 860 pro 256gb | Acer m.2 1tb/ sn850x 4tb| Many2.5" sata's ssd 3.5hdd's
Display(s) 1-AOC G2460PG 24"G-Sync 144Hz/ 2nd 1-ASUS VG248QE 24"/ 3rd LG 43" series
Case D450 | Cherry Entertainment center on Test bench
Audio Device(s) Built in Realtek x2 with 2-Insignia 2.0 sound bars & 1-LG sound bar
Power Supply EVGA 1000P2 with APC AX1500 | 850P2 with CyberPower-GX1325U
Mouse Redragon 901 Perdition x3
Keyboard G710+x3
Software Win-7 pro x3 and win-10 & 11pro x3
Benchmark Scores Are in the benchmark section
R-T-B said:
Yeah, not seeing that here.

Maybe it's because my SSDs are using their opal managed hardware encryption, no idea.
Click to expand...
Hi,
Using win-11 ?
The above comment was referring to win-11 not 10 but I may use it shortly on 10

Yep did the same thing on 10

Code: 
rem Disable automatic TCG/Opal disk locking on supported SSD drives with PSID
reg add HKLM\Software\Policies\Microsoft\Windows\EnhancedStorageDevices /v TCGSecurityActivationDisabled /t REG_DWORD /d 1 /f
 
Last edited:
R-T-B

R-T-B

Supporter
Joined
Aug 20, 2007
Messages
20,776 (3.41/day)
System Specs
System Name Pioneer
Processor Ryzen R9 7950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage 2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64
ThrashZone said:
Hi,
Using win-11 ?
The above comment was referring to win-11 not 10 but I may use it shortly on 10

Yep did the same thing on 10

Code: 
rem Disable automatic TCG/Opal disk locking on supported SSD drives with PSID
reg add HKLM\Software\Policies\Microsoft\Windows\EnhancedStorageDevices /v TCGSecurityActivationDisabled /t REG_DWORD /d 1 /f
Click to expand...
Yeah I was on 11. You using an SSD? It's well known that bitlocker takes ownership of opal compliant ssds at install time if not already claimed, might be what you are seeing.
 
You must log in or register to reply here.
Top