Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Encryption fails to start after installing Full Disk Encryption (FDE) for BitLocker

    • Updated:
    • 8 Sep 2014
    • Product/Version:
    • Endpoint Encryption 5.0
    • Platform:
    • Windows 7 32-bit
    • Windows 7 64-bit
    • Windows 8 32-bit
    • Windows 8 64-bit
Summary
When FDE for BitLocker is installed on computers with only one partition, it cannot trigger BitLocker to start the encryption. 
Details
Public
To enable BitLocker Drive Encryption on the operating system drive, a separate, active system partition is required. The system partition contains the files needed to start the operating system and the partition cannot be encrypted.
In Windows 7, a separate, active system partition is created automatically. 
Note: By default, the system partition does not have a drive letter so that it is not easily accessible by the user.
When you check in Computer Management > Storage > Disk Management, there are two system partitions. A 100 MB system partition is present as shown below.
A 100 MB system partition is present
However, in certain computers, there is only one partition which acts as a system partition and a boot partition. When FDE for Bitlocker is installed on these computers, it cannot trigger the BitLocker to start the encryption.
Only one partition shows on certain computers
To resolve this issue, create a separate system partition:
  1.  Go to Start >  Control Panel  > System and Security  > BitLocker Drive Encryption. Click Turn on BitLocker.
    Turn on Bitlocker
  2. In the BitLocker Drive Encryption setup page, click Next.
    Bitlocker Drive Encryption setup page
  3. Windows will start to prepare your drive for BitLocker. Click Next.Windows will prepare your drive for BitLocker
    Windows will start to create the system partition.Windows will create the system partition
  4. After the system partition is created, click Restart now.Restart computer to finish drive preparation
  5. After the computer has restarted, BitLocker is ready to encrypt the drive. Click Next.Bitlocker Drive Encryption setup page
  6. Because we want to initiate the encryption from FDE for BitLocker, click Cancel to cancel encrypting the drive.
    Click Cancel to cancel encrypting the drive
  7. Go to Computer Management > Storage > Disk Management to verify if the system partition is created.
    Verify if the system partition is created
  8. Proceed with the installation of the FDE for BitLocker. Refer to the KB article Installing Full Disk Encryption (TMFDE) for Microsoft BitLocker
Premium
Internal
Rating:
Category:
Configure; Troubleshoot
Solution Id:
1104932
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.