Question : Restricting Access to BitLocker Management

I've gone through and configured group policy for my domain so it backs up BitLocker recovery keys to AD and enforces select policies, but I've run into an issue. (ETA: Windows 7 machines)

Most of my people who have laptops are local administrators on their machines. Local admins can disable BitLocker. Any ideas how I could restrict access to the BitLocker management interface to users who are local admins (but not domain admins)? I didn't see anything in group policy that could accomplish this. Thanks!

Answer : Restricting Access to BitLocker Management

This can be done easily with these two steps
1. Configure a GPO to remove the Bitlocker Icon from Control Panel.
2. Configure Application Control Policies (Applocker) to block manage-bde.exe.

You can follow the detail instruction on the link below

http://blogs.technet.com/b/askcore/archive/2010/08/13/how-to-prevent-local-administrator-from-turning-off-bitlocker.aspx

Random Solutions

Loan application function

Reference a selected rows column value from a gridview in VB .Net 3.5

How to design my DNS structure

PL/SQL Performance

What is the proper DNS settings for ...

SSI EEB 3.61 case

Custom Search Page and Impersonation

putting a requiredfield on a combobox in asp

Vlookup with exact number format

Always view the last row of a textarea box