BitLocker Status - AVD Test
BitLocker is a full disk encryption that helps to protect your data by encrypting the drives to prevent unauthorized access. BitLocker encrypts the operating system drive, fixed data drives and removable drives thereby allowing only authorized users with correct credentials to access the data. However, if the BitLocker fails or stops, it can lead to loss of encryption protection, data inaccessibility and other security issues. Therefore, monitoring the BitLocker service and promptly identifying issues is of high importance.
This test monitors the BitLocker on every virtual volumes in the target desktop and reports the BitLocker status and service status. This helps to ensure that the encryption service is up and running. Additionally, this test also reports the capacity, volume type, protection and encryption status, thereby helping the administrator detect misconfigurations and potential security risks early. Continuous monitoring helps promptly identify any deviations, such as inactive encryption or disabled protection, which can lead to data exposure, loss, and other security issues.
Target of the test : An Azure Virtual Desktop
Agent deploying the test : An internal agent.
Outputs of the test : One set of results for each virtual volume on the target Azure Virtual Desktop.
Parameters | Description |
---|---|
Test period |
This indicates how often should the test be executed. |
Host |
The host for which the test is to be configured. |
Port |
The default port is NULL. |
Debug ON |
If this flag is set to Yes, the eG agent will run in debug mode, enabling error logging. By default, this flag is set to No. |
DD Frequency |
Refers to the frequency with which detailed diagnosis measures are to be generated for this test. The default is 1:1. This indicates that, by default, detailed measures will be generated every time this test runs, and also every time the test detects a problem. You can modify this frequency, if you so desire. Also, if you intend to disable the detailed diagnosis capability for this test, you can do so by specifying none against DD frequency. |
Measurement | Description | Measurement Unit | Interpretation | ||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Bitlocker service status |
Indicates whether the BitLocker service is running. |
|
This measure is reported only for Summary descriptor. The values that this measure can report and its corresponding numeric equivalents are listed in the table below:
Note: By default, this measure reports the Measure Values listed in the table above to indicate whether the BitLocker service is running. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only. |
||||||||
Bitlocker status |
Indicates the operational state of the BitLocker encryption on this volume. |
|
This measure is reported only for Summary descriptor. The values that this measure can report and its corresponding numeric equivalents are listed in the table below:
Note: By default, this measure reports the Measure Values listed in the table above to indicate the operational state of BitLocker. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only. |
||||||||
Capacity |
Indicates the total storage size of this volume. |
GB |
|
||||||||
Volume status |
Indicates the current status of this volume. |
Number |
The values that this measure can report and its corresponding numeric equivalents are listed in the table below:
Note: By default, this measure reports the Measure Values listed in the table above to indicate status of the volume. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only. |
||||||||
Encryption |
Indicates the percentage of this volume encrypted using the BitLocker service. |
Percent |
If the value of this measure is 100%, then it means the entire volume is fully encrypted and secure. |
||||||||
Protection status |
Indicates whether or not BitLocker protection is enabled in the volume. |
|
The values that this measure can report and its corresponding numeric equivalents are listed in the table below:
Note: By default, this measure reports the Measure Values listed in the table above to indicate whether BitLocker protection is enabled or not. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only. |
||||||||
Volume type |
Indicates the type of this volume. |
|
The values that this measure can report and its corresponding numeric equivalents are listed in the table below:
Note: By default, this measure reports the Measure Values listed in the table above to indicate the type of the volume. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only. |