One of the new features in Windows 8 for BitLocker is the ability to backup your BitLocker recovery key to a Microsoft account. During the process before encryption begins, a user is prompted for a location to make a backup copy of the recovery key. Save to your Microsoft account has been added along with save to a file and print the recovery key.
The feature even extends to fixed data drives and removable drives!
This feature is a great addition for computers that are not domain joined… especially if you’ve ever been prompted for a recovery key while you’re away from home. I can’t begin to stress enough how important it is to have a copy of your recovery key. In addition to saving it to your Microsoft account, I highly recommend making at least one additional copy somewhere safe. (And by somewhere safe, I mean nowhere near the computer if it is a physical copy. It doesn’t do much good to encrypt a drive if you’re going to have a copy of the recovery key sitting nearby.) If you lose the recovery key and your computer starts prompting for it, you will be unable to access your data unless you can find the key or can recover a backup.
So, now that you’ve saved your BitLocker recovery key to your Microsoft account, how do you access it? Actually, it is pretty simple! Simply go to http://onedrive.live.com/RecoveryKey and log in with your Microsoft account.
To make the process more secure, a code will be generated and emailed to the email address associated with your Microsoft account. Enter this code and click Submit.
Here’s an example from a laptop that had the operating system drive, a fixed data drive, and a removable drive encrypted. As you can see, all three BitLocker recovery keys are stored in the Microsoft account. Pretty cool, huh?