Disabling/Enabling Bitlocker Pin

Short and sweet…

We have Bitlocker Pins enabled on 100 laptops.

Since Window updates require a reboot, we must run around and enter Pins on all the laptops to finish the update.

Is there a script to disable the Pin requirement and, after the reboot and the update has completed, another to enable the Pin requirement? If yes, will the enabling script keep the same Pin password?


You can suspect BitLocker for updates. If you’re deploying via SCCM you should have the option to do it via SCCM. If not, you can use PowerShell:

Another option, which might be more hassle then its worth, is Network Unlock