Preparation
Before you can target BitLocker, you must:
Turn on and initialize the TPM (Trusted Platform Module) and enable BitLocker
Enable BitLocker and TPM to backup to Active Directory.
Add a recovery password.
This should be backed up to Active Directory, and will the numeric string that is entered to get into a machine when a user is locked out.
Add a PIN to allow the administrative user to start the machine and access the hard drive.
Setting up a target system administrator
Bravura Security Fabric uses a designated domain account with read permissions on BitLocker computers, computer attributes and subobjects to perform Bravura Security Fabric operations. Create an account with appropriate permissions if one does not already exist.