Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Create and access a list of your products
Sign In Create an Account Premier Sign In Partner Program Sign In
Contact Us
Some article numbers may have changed. If this isn't what you're looking for, try searching all articles. Search articles

BitLocker is Prompting for a Recovery Key, and You Cannot Locate the Key

Summary: To help with locating previously stored BitLocker recovery keys, this article describes the different storage options that each Windows operating system supports.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Symptoms

BitLocker Overview

BitLocker is a Microsoft encryption product that is designed to protect your data on a computer. If a problem with BitLocker occurs, you encounter a prompt for a BitLocker recovery key. If you do not have a working recovery key for the BitLocker prompt, you are unable to access the computer.

Note: Because BitLocker is a Microsoft encryption security product, Dell does not store or possess the ability to provide a recovery key. Dell cannot circumvent the Microsoft BitLocker Recovery Key process. Dell devices are NOT encrypted when shipped from the factory.

Cause

How Was BitLocker Activated On My Device?

There are three common ways for BitLocker to start protecting your device.

  1. Your device is a modern device that meets certain requirements to automatically enable device encryption: In this case, your BitLocker recovery key is automatically saved to your Microsoft account before protection is activated.
  2. An administrator of your device activated BitLocker protection (also called device encryption on some devices) through the Settings app or Control Panel: In this case whoever activated BitLocker selects where to save the key or (If the device is encrypted) it is automatically saved to their Microsoft account.
  3. A work or school organization that is managing your device (now or in the past) activates BitLocker protection on your device: The organization should have your BitLocker recovery key.

Beginning in Windows 8.1, Windows automatically enables BitLocker Device Encryption on devices that support Modern Standby. With Windows 10 and 11, Microsoft offers BitLocker Device Encryption support on a broader range of devices. These include those that support Modern Standby, and devices that run Windows 10 Home Edition or Windows 11. All computers that Dell ships are Modern Standby compliant and the above applies. A registry key that Dell leaves in a neutral state controls this behavior, it does not prohibit or enforce encryption. Windows interprets this as an approval to encrypt.

Someone with full administrative access to your device may intentionally activate BitLocker encryption on your behalf. That could be you, or someone working for an organization that manages your device. Dell does not enable BitLocker on any device, but Someone during setup or an administrator during domain configuration can enable BitLocker.

A BIOS update can trigger a BitLocker Recovery event. (The Platform Configuration Register (PCR) banks between the time Windows run and the time that the BIOS is flashed, changes.) However, all Dell BIOS updates suspend BitLocker before the flash so a BitLocker Recovery event cannot occur as a result of updating the firmware. If the computer goes into recovery mode, it is likely due to an external drive being connected as it changes the boot drive enumeration. You can configure this in the BIOS. Outside of this specific scenario, there is not an event that triggers BitLocker encryption unexpectedly. The BitLocker encryption process happens in the background and often goes unnoticed by you until a Recovery event occurs.

The BitLocker setup process enforces the creation of a recovery key at the time of activation. You must reset your device using one of the Windows recovery options, if you cannot locate a BitLocker recovery key or revert a configuration change. Resetting your device removes all your files.

Resolution

BitLocker Recovery Key Storage Options

Recovery keys may be saved in several ways depending on the version of Windows installed. The following list describes the supported options to save a key per each operating system version and may aid in locating a saved key (if present):

For Windows 8 or Windows 8.1:

  • A key may be saved to your Microsoft Account by default (Access your Microsoft account from a different computer to retrieve the key).
  • A key may be manually saved to a USB flash drive.
  • A key may be manually saved as a file (Network drive or other location).
  • A key may be physically printed manually.

For Windows 10 and 11:

  • A key may be saved to your Microsoft Account by default (search BitLocker Recovery Keys to retrieve the key).
    • If you have a modern device that supports automatic device encryption, the recovery key is most likely in your Microsoft account. For more, see Device encryption This hyperlink is taking you to a website outside of Dell Technologies.
    • If the device was set up or someone else activated BitLocker protection, the recovery key may be in that person’s Microsoft account.
  • A key may be saved to a USB flash drive (Plug the USB flash drive in to your locked personal computer and follow the instructions. If you saved the key as a text file on the flash drive, use a different computer to read the text file)
  • A key may be saved to your Azure Active Directory account (for business computers where you sign in with an Azure Active Directory account, to get your recovery key, see the device info for your Microsoft Azure account).
  • A key may be manually saved as a file (Network drive or other location).
  • A key may be physically printed manually.
Note: The option to save as a file is the most commonly used option. It can sometimes cause recovery issues when you save the file on the drive of the computer that you must recover. (We recommend saving to a network drive or another physical hard drive to prevent hard drive corruption from preventing retrieval of the recovery key.)
Caution: You cannot unlock the recovery key by other means if it is lost. To return the computer to operation, reinstalling Windows is the only option. (This leads to the loss of all data and configurations of the encrypted hard drive.)

Additional Information

Recommended Articles

For additional information about BitLocker and the process of recovery, see the following articles:

Here are some recommended articles related to this topic that might be of interest to you:

Out of Warranty supportOut of warranty? That is not a problem. Browse the Dell.com/support website and enter your Dell Service Tag and view our offers.

Note: Offers are only available for US, Canada, UK, France, Germany, and China personal computer customers. Server and Storage products are not applicable.

Affected Products

Alienware, Inspiron, OptiPlex, Vostro, XPS, G Series, G Series, Alienware, Inspiron, Latitude, Vostro, XPS, Fixed Workstations, Mobile Workstations
Article Properties
Article Number: 000124361
Article Type: Solution
Last Modified: 03 Feb 2025
Version:  16
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.