Skip to content

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/central/customer/help/en-us/index.html?contextId=Device-Encryption-recovery

Recover Windows endpoints

If users forget their BitLocker PIN or password, they need a recovery key to create a new one.

To recover their PIN or password, users must do as follows:

  1. Restart the computer.
  2. When the computer shows the BitLocker screen to enter the PIN or password, press Esc .

  3. On the BitLocker recovery screen, copy the recovery key ID.

    The BitLocker screen shows the recovery key ID below the input field for the recovery key.

  4. Use one of the following options to get a recovery key:

  5. Enter the recovery key.

  6. Follow the on-screen instructions to create a new PIN or password.
  7. Sign in with the new PIN or password.

Note

If a data volume remains locked after signing in with the new PIN or password, repeat the process of getting a recovery key. Note that the BitLocker recovery screen will show a different recovery key ID for the locked data volume.