BitLocker does not prompt for PIN during startup
Now this was something I struggled a little here. I have to admit I do not have too much experience on this. After BitLocker encrypted the drive and I used the manage-bde command line to enable TPMAndPIN, it still didn’t prompt me whenever I started up my computer. The problem I found was that startup using TPM only was also enabled. You can check this by typing in
If you get a return result under the Key Protectors of “TPM”, and also “TPM And PIN” you’re not gonna get a prompt during startup. So, you need to remove the TPM only during startup. To do this I used this command.
manage-bde –protectors –delete c: –type tpm
Go ahead and check if that reflected by using the “manage-bde –status” command again and you should notice you’re left with “TPM And PIN”. Reboot your machine and…:)