Windows 10 (legacy) — Question 15

You have several computers that run Windows 10. The computers are in a workgroup and have BitLocker Drive Encryption (BitLocker) enabled.
You join the computers to Microsoft Azure Active Directory (Azure AD).
You need to ensure that you can recover the BitLocker recovery key for the computers from Azure AD.
What should you do first?

Answer options

• A. Disable BitLocker.
• B. Add a BitLocker key protector.
• C. Suspend BitLocker.
• D. Disable the TMP chip.

Correct answer: B

Explanation

The correct answer is B, as adding a BitLocker key protector is necessary for the recovery key to be backed up to Azure AD. Disabling BitLocker (A) or suspending it (C) would not contribute to key recovery, and disabling the TMP chip (D) is not relevant to the recovery process.