Add feature to gather and retrieve bitlocker keys stored in MECM (SCCM)
We moved away from standalone MBAM and are now using MECM to encrypt an store bitlocker recovery keys.
-
Guest
- Jan 14 2022
- Future consideration
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
- +21
Related ideas
Here a script you can use to export the data:
#import-module sqlps <---- Only Needed if Not on a SQL Server Install
# Back Up All Recovery Keys and TPM Ownership Passwords to Comma Delimited File for Excel
$timer = (Get-Date) -replace "/","-" -replace " ","" -replace ":",""
$path = "D:\backup\mbam\TPMOnwershipData"+ $timer +".csv"
$SQLquery = 'Select * from RecoveryAndHardwareCore_machines'
$Result = Invoke-Sqlcmd -query $SQLquery -ServerInstance 'sccm' -Database 'CM_SCCM'
$Result |export-csv $path -NoTypeInformation
$path = "D:\backup\mbam\BitlockerRecoveryKeys"+ $timer +".csv"
$SQLquery = 'Select * from RecoveryAndHardwareCore_keys'
$Result = Invoke-Sqlcmd -query $SQLquery -ServerInstance 'sccm' -Database 'CM_SCCM'
$Result |export-csv $path -NoTypeInformation
#Clean Up Files Older than 7 days
$path = "D:\backup\mbam"
$limit = (Get-Date).AddDays(-7)
# Delete files older than the $limit.
Get-ChildItem -Path $path -Recurse -Force | Where-Object { !$_.PSIsContainer -and $_.CreationTime -lt $limit } | Remove-Item -Force
#Clean Up Backup Files Older than 14 days While we are at it
$path = "F:\Backup\SCCM"
$limit = (Get-Date).AddDays(-14)
# Delete files older than the $limit.
Get-ChildItem -Path $path -Recurse -Force | Where-Object { !$_.PSIsContainer -and $_.CreationTime -lt $limit } | Remove-Item -Force
#Clean Up Backup Files Older than 3 days While we are at it
$path = "C:\inetpub\logs\LogFiles"
$limit = (Get-Date).AddDays(-3)
# Delete files older than the $limit.
Get-ChildItem -Path $path -Recurse -Force | Where-Object { !$_.PSIsContainer -and $_.CreationTime -lt $limit } | Remove-Item -Force
exit
Please do :)
This would be extremely helpful.
Would like to see this implemented.
This would be very helpful