BitLocker Status - OS Test
BitLocker is a full disk encryption that helps to protect your data by encrypting the drives to prevent unauthorized access. BitLocker encrypts the operating system drive, fixed data drives and removable drives thereby allowing only authorized users with valid credentials to access the data. However, if the BitLocker fails or stops, it can lead to loss of encryption protection, data inaccessibility and other security issues. Therefore, monitoring the BitLocker service and promptly identifying issues is of high importance.
This test monitors BitLocker on every volume (partition) in the target desktop and reports the BitLocker status and service status. This helps ensure that the encryption service is up and running. Additionally, this test also reports the capacity, volume type, protection and encryption status, thereby helping the administrator detect misconfigurations and potential security risks early. Continuous monitoring helps promptly identify any deviations, such as inactive encryption or disabled protection, which could lead to data exposure, loss, and other security issues.
Target of the test : A Windows virtual desktop on the cloud
Agent deploying the test : A remote agent
Output of the test : One set of results for every Cloud virtual desktop on the cloud that is currently launched.
| Parameter | Description |
|---|---|
|
Test Period |
How often should the test be executed. By default, this is set to 5 mins. |
|
Host |
The nick name of the Cloud Desktop Group component for which this test is to be configured. |
|
Port |
The port at which the specified Host listens. By default, this is NULL. |
|
Report Powered OS |
If this flag is set to Yes (which is the default setting), then the 'inside view' tests will report measures for even those desktops that do not have any users logged in currently. Such desktops will be identified by their name and not by the username_on_desktopname. On the other hand, if this flag is set to No, then this test will not report measures for those desktops to which no users are logged in currently. |
|
Report By User |
This flag is set to Yes by default. The value of this flag cannot be changed. This implies that the cloud-based virtual desktops in environments will always be identified using the login name of the user. In other words, in cloud environments, this test will, by default, report measures for every username_on_desktopname. |
| Measurement | Description | Measurement Unit | Interpretation | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
Bitlocker service status |
Indicates whether the BitLocker service is running. |
|
This measure is reported only for Summary descriptor. The values that this measure can report and its corresponding numeric equivalents are listed in the table below:
Note: By default, this measure reports the Measure Values listed in the table above to indicate whether the BitLocker service is running. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only. |
||||||||
|
Bitlocker status |
Indicates the operational state of the BitLocker encryption on this volume. |
|
This measure is reported only for Summary descriptor. The values that this measure can report and its corresponding numeric equivalents are listed in the table below:
Note: By default, this measure reports the Measure Values listed in the table above to indicate the operational state of BitLocker. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only. |
||||||||
|
Capacity |
Indicates the total storage size of this volume. |
GB |
|
||||||||
|
Volume status |
Indicates the current encryption status of this volume. |
Number |
The values that this measure can report and its corresponding numeric equivalents are listed in the table below:
Note: By default, this measure reports the Measure Values listed in the table above to indicate encryption status of the volume. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only. |
||||||||
|
Encryption |
Indicates the percentage of this volume encrypted using the BitLocker service. |
Percent |
If the value of this measure is 100%, then it means the entire volume is fully encrypted and secure. |
||||||||
|
Protection status |
Indicates whether or not BitLocker protection is enabled in this volume. |
|
The values that this measure can report and its corresponding numeric equivalents are listed in the table below:
Note: By default, this measure reports the Measure Values listed in the table above to indicate whether BitLocker protection is enabled or not. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only. |
||||||||
|
Volume type |
Indicates the type of this volume. |
|
The values that this measure can report and its corresponding numeric equivalents are listed in the table below:
Note: By default, this measure reports the Measure Values listed in the table above to indicate the type of the volume. In the graph of this measure however, the same is represented using the corresponding numeric equivalents only. |
