BitLocker error codes

BitLocker errors are reported using the following SafeGuard events:

The following table provides a list of error codes for BitLocker:

Error code (Hex) Error code (Dec) Description
0x00000000 – 0x000032C8 0 – 15999 See Microsoft System Error Codes
0x00BEB001 12496897 Encryption not possible due to error during kernel initialization.
0x00BEB002 12496898 Boot manager must not be on the system volume to be encrypted.
0x00BEB003 12496899 Found an unsupported Windows version on the HDD. Minimum is Windows Vista.
0x00BEB004 12496900 The configured authentication method is not supported.
0x00BEB005 12496901 The PIN dialog has not been completed successfully.
0x00BEB006 12496902 The path dialog has not been completed successfully.
0x00BEB007 12496903 Error in inter-process communication in PIN or path dialog.
0x00BEB008 12496904 Unhandled exception in PIN or path dialog. The dialog was displayed, but the user logged off or stopped it with the Task Manager.
0x00BEB009 12496905 The encryption algorithm defined in the policy does not match the one of the encrypted drive. By default (if not modified) native BitLocker uses AES-128 whereas the SGN policies define AES-256.
0x00BEB00A 12496906 The volume is a dynamic volume. Dynamic volumes are not supported.
0x00BEB00B 12496907 The hardware test failed because of a hardware problem.
0x00BEB00C 12496908 An error occurred during TPM initialization and activation.
0x00BEB00D 12496909 The Encryption-Algorithm in the SGN-Policy conflicts with the Encryption-Algorithm settings in the GPO.
0x00BEB00E 12496910 Sector-based initial encryption of drive <drive letter> failed.
0x00BEB00F 12496911 Active Directory backup of recovery keys is required but no domain controller is available.
0x00BEB010 12496912 Active Directory backup of recovery keys is not compatible with BitLocker Challenge/Response.
0x00BEB102 12497154 UEFI version could not be validated and therefore BitLocker will be executed in legacy mode.
0x00BEB202 12497410 Client configuration package has not yet been installed.
0x00BEB203 12497411 UEFI version not supported and therefore BitLocker will be executed in legacy mode. Minimum requirement is 2.3.1.
0x80280006 -2144862202 The TPM is inactive.
0x80280007 -2144862201 The TPM is disabled.
0x80280014 -2144862188 The TPM already has an owner.
0x80310037 -2144272329 The Group Policy setting requiring FIPS compliance prevents a local recovery password from being generated and written to the key backup file. Encryption will nevertheless continue.
0x8031005B -2144272293 The Group Policy for the specified authentication method is not set. Please enable the Group Policy "Require additional authentication at startup".
0x8031005E -2144272290 The Group Policy for encryption without TPM is not set. Please enable the Group Policy "Require additional authentication at startup" and set the checkbox "Allow BitLocker without a compatible TPM" within it.
0x80280000 – 0x803100CF -2144862208 – -2144272177 See Microsoft COM Error Codes (TPM, PLA, FVE).