BitLocker Status - AVD Test

BitLocker is a full disk encryption that helps to protect your data by encrypting the drives to prevent unauthorized access. BitLocker encrypts the operating system drive, fixed data drives and removable drives thereby allowing only authorized users with correct credentials to access the data. However, if the BitLocker fails or stops, it can lead to loss of encryption protection, data inaccessibility and other security issues. Therefore, monitoring the BitLocker service and promptly identifying issues is of high importance.

This test monitors the BitLocker on every virtual volumes in the target desktop and reports the BitLocker status and service status. This helps to ensure that the encryption service is up and running. Additionally, this test also reports the capacity, volume type, protection and encryption status, thereby helping the administrator detect misconfigurations and potential security risks early. Continuous monitoring helps promptly identify any deviations, such as inactive encryption or disabled protection, which can lead to data exposure, loss, and other security issues.

Target of the test : An Azure Virtual Desktop

Agent deploying the test : An internal agent.

Outputs of the test : One set of results for each virtual volume on the target Azure Virtual Desktop.

Configurable parameters for the test
Parameters Description

Test period

This indicates how often should the test be executed.

Host

The host for which the test is to be configured.

Port

The default port is NULL.

Debug ON

If this flag is set to Yes, the eG agent will run in debug mode, enabling error logging. By default, this flag is set to No.

DD Frequency

Refers to the frequency with which detailed diagnosis measures are to be generated for this test. The default is 1:1. This indicates that, by default, detailed measures will be generated every time this test runs, and also every time the test detects a problem. You can modify this frequency, if you so desire. Also, if you intend to disable the detailed diagnosis capability for this test, you can do so by specifying none against DD frequency.

Measures reported by the test:
Measurement Description Measurement Unit Interpretation

Bitlocker service status

Indicates whether the BitLocker service is running.

 

This measure is reported only for Summary descriptor.

The values that this measure can report and its corresponding numeric equivalents are listed in the table below:

Measure Value Numeric Value
Stopped 0
Running 1

Note:

By default, this measure reports the Measure Values listed in the table above to indicate whether the BitLocker service is running. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only.

Bitlocker status

Indicates the operational state of the BitLocker encryption on this volume.

 

This measure is reported only for Summary descriptor.

The values that this measure can report and its corresponding numeric equivalents are listed in the table below:

Measure Value Numeric Value
Ok 0
Failure 1

Note:

By default, this measure reports the Measure Values listed in the table above to indicate the operational state of BitLocker. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only.

Capacity

Indicates the total storage size of this volume.

GB

 

Volume status

Indicates the current status of this volume.

Number

The values that this measure can report and its corresponding numeric equivalents are listed in the table below:

Measure Value Numeric Value
Fully encrypted 0
Encryption in progress 1
Fully decrypted 2

Note:

By default, this measure reports the Measure Values listed in the table above to indicate status of the volume. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only.

Encryption

Indicates the percentage of this volume encrypted using the BitLocker service.

Percent

If the value of this measure is 100%, then it means the entire volume is fully encrypted and secure.

Protection status

Indicates whether or not BitLocker protection is enabled in the volume.

 

The values that this measure can report and its corresponding numeric equivalents are listed in the table below:

Measure Value Numeric Value
On 0
Off 1

Note:

By default, this measure reports the Measure Values listed in the table above to indicate whether BitLocker protection is enabled or not. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only.

Volume type

Indicates the type of this volume.

 

The values that this measure can report and its corresponding numeric equivalents are listed in the table below:

Measure Value Numeric Value
Data 0
Operating System 1

Note:

By default, this measure reports the Measure Values listed in the table above to indicate the type of the volume. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only.