diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-pin.png b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-pin.png new file mode 100644 index 0000000000..45ad90684c Binary files /dev/null and b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-pin.png differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-custom-message.png b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-custom-message.png index 0d7217a9cc..9401b2ddd6 100644 Binary files a/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-custom-message.png and b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-custom-message.png differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-custom-url-single-backup.png b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-custom-url-single-backup.png new file mode 100644 index 0000000000..c351ef9fda Binary files /dev/null and b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-custom-url-single-backup.png differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-custom-url.png b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-custom-url.png index 0cdb4e84da..bfac100aed 100644 Binary files a/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-custom-url.png and b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-custom-url.png differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-hint.png b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-hint.png index ea4aca3b84..5144f30038 100644 Binary files a/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-hint.png and b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-hint.png differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-multiple-backups.png b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-multiple-backups.png new file mode 100644 index 0000000000..c72a4075a1 Binary files /dev/null and b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-multiple-backups.png differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-multiple-passwords-multiple-backups.png b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-multiple-passwords-multiple-backups.png new file mode 100644 index 0000000000..29308c71db Binary files /dev/null and b/windows/security/operating-system-security/data-protection/bitlocker/images/bitlocker-recovery-multiple-passwords-multiple-backups.png differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example1.png b/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example1.png deleted file mode 100644 index 1c9b7bc560..0000000000 Binary files a/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example1.png and /dev/null differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example2.png b/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example2.png deleted file mode 100644 index eee52f9c54..0000000000 Binary files a/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example2.png and /dev/null differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example3.png b/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example3.png deleted file mode 100644 index ed1158c2a1..0000000000 Binary files a/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example3.png and /dev/null differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example4.png b/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example4.png deleted file mode 100644 index 8cd88812bc..0000000000 Binary files a/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example4.png and /dev/null differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example5.png b/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example5.png deleted file mode 100644 index 7a588bdd67..0000000000 Binary files a/windows/security/operating-system-security/data-protection/bitlocker/images/rp-example5.png and /dev/null differ diff --git a/windows/security/operating-system-security/data-protection/bitlocker/recovery-guide-screen.md b/windows/security/operating-system-security/data-protection/bitlocker/recovery-guide-screen.md index 9c268f4047..dbaf4dddcb 100644 --- a/windows/security/operating-system-security/data-protection/bitlocker/recovery-guide-screen.md +++ b/windows/security/operating-system-security/data-protection/bitlocker/recovery-guide-screen.md @@ -69,7 +69,6 @@ There are rules governing which hint is shown during the recovery (in the order **Example: single recovery password saved to file and single backup** :::column-end::: :::row-end::: -:::row::: :::row::: :::column span="2"::: In this scenario, the recovery password is saved to a file @@ -93,10 +92,11 @@ There are rules governing which hint is shown during the recovery (in the order - saved to Microsoft Account - not printed - not saved to a file + + **Result:** the hints for the Microsoft account and custom URL are displayed. :::column-end::: :::column span="2"::: - **Result:** the hints for the Microsoft account and custom URL are displayed. - :::image type="content" source="images/rp-example1.png" alt-text="Screenshot of the BitLocker recovery screen showing a hint where the BitLocker recovery key was saved." lightbox="images/rp-example1.png"::: + :::image type="content" source="images/bitlocker-recovery-custom-url-single-backup.png" alt-text="Screenshot of the BitLocker recovery screen showing a hint where the BitLocker recovery key was saved." lightbox="images/bitlocker-recovery-custom-url-single-backup.png"::: :::column-end::: :::row-end::: :::row::: @@ -109,32 +109,38 @@ There are rules governing which hint is shown during the recovery (in the order In this scenario, a custom URL is configured. The recovery password is: - saved to Active Directory - not printed - - not saved to a file + - not saved to a file + + **Result:** only the custom URL is displayed. :::column-end::: :::column span="2"::: - **Result:** only the custom URL is displayed. - :::image type="content" source="images/rp-example2.png" alt-text="Screenshot of the BitLocker recovery screen showing only the custom URL." lightbox="images/rp-example2.png"::: + :::image type="content" source="images/bitlocker-recovery-custom-url" alt-text="Screenshot of the BitLocker recovery screen showing only the custom URL." lightbox="images/bitlocker-recovery-custom-url"::: :::column-end::: :::row-end::: - -### Example: single recovery password in Microsoft Entra ID with multiple backups - +:::row::: + :::column span="4"::: + **Example: single recovery password with multiple backups** + :::column-end::: +:::row-end::: :::row::: :::column span="2"::: In this scenario, the recovery password is: - saved to Microsoft Account - saved to Microsoft Entra ID - printed - - saved to file + - saved to file + + **Result:** only the Microsoft Account hint is displayed. :::column-end::: :::column span="2"::: - **Result:** only the Microsoft Account hint is displayed. - :::image type="content" source="images/rp-example3.png" alt-text="Screenshot of the BitLocker recovery screen showing only the Microsoft Account hint." lightbox="images/rp-example3.png"::: + :::image type="content" source="images/bitlocker-recovery-multiple-backups.png" alt-text="Screenshot of the BitLocker recovery screen showing only the Microsoft Account hint." lightbox="images/bitlocker-recovery-multiple-backups.png"::: :::column-end::: :::row-end::: - -### Example: multiple recovery passwords - +:::row::: + :::column span="4"::: + **Example: multiple recovery passwords with sinlge backup** + :::column-end::: +:::row-end::: :::row::: :::column span="2"::: In this scenario, there are two recovery passwords. @@ -142,21 +148,24 @@ There are rules governing which hint is shown during the recovery (in the order The recovery password #1 is: - saved to file - creation time: **1PM** - - key ID: **A564F193** + - key ID: **4290B6C0-B17A-497A-8552-272CC30E80D4** The recovery password #2 is: - not backed up - creation time: **3PM** - - key ID: **T4521ER5** + - key ID: **045219EC-A53B-41AE-B310-08EC883AAEDD** + + **Result:** only the hint for the successfully backed up key is displayed, even if it isn't the most recent key. :::column-end::: :::column span="2"::: - **Result:** only the hint for the successfully backed up key is displayed, even if it isn't the most recent key. - :::image type="content" source="images/rp-example4.png" alt-text="Screenshot of the BitLocker recovery screen showing the key ID of the recovery password that was successfully backed up." lightbox="images/rp-example4.png"::: + :::image type="content" source="images/bitlocker-recovery-hint.png" alt-text="Screenshot of the BitLocker recovery screen showing the key ID of the recovery password that was successfully backed up." lightbox="images/bitlocker-recovery-hint.png"::: :::column-end::: :::row-end::: - -### Example: multiple recovery passwords - +:::row::: + :::column span="4"::: + **Example: multiple recovery passwords with multiple backups** + :::column-end::: +:::row-end::: :::row::: :::column span="2"::: In this scenario, there are two recovery passwords. @@ -165,15 +174,15 @@ There are rules governing which hint is shown during the recovery (in the order - Saved to Microsoft Account - Saved to Microsoft Entra ID - creation time: **1PM** - - key ID: **99631A34** + - key ID: **4290B6C0-B17A-497A-8552-272CC30E80D4** The recovery password #2 is: - Saved to Microsoft Entra ID - creation time: **3PM** - - key ID: **9DF70931** + - key ID: **045219EC-A53B-41AE-B310-08EC883AAEDD** :::column-end::: :::column span="2"::: **Result:** the hint for the most recent key is displayed. - :::image type="content" source="images/rp-example5.png" alt-text="Screenshot of the BitLocker recovery screen showing the key ID of the most recent key." lightbox="images/rp-example5.png"::: + :::image type="content" source="images/bitlocker-recovery-multiple-passwords-multiple-backups.png" alt-text="Screenshot of the BitLocker recovery screen showing the key ID of the most recent key." lightbox="images/bitlocker-recovery-multiple-passwords-multiple-backups.png"::: :::column-end::: :::row-end:::