We changed our name from IT Central Station: Here's why

Microsoft BitLocker Room for Improvement

JS
Information Security Manager at a renewables & environment company with 501-1,000 employees

Their interoperability with our tools, which are the Microsoft tool, can be improved. It needs to be geared towards more of the wraparound of the zero trust. There are solutions we're looking at that do encryption plus X, Y, and Z. So, we're looking at the ability to wrap around the product with other features.

The biggest one for us is revoking access. So, even though someone downloads something to a device, we want the ability to cloak that device or data and bring it back or make that data unusable for that person. Currently, BitLocker doesn't give us that ability. It basically encrypts it. We're seeing if identity management or IAM allows us to do that. We're kind of looking at third-party software that does that for us.

Usually, Microsoft sees what other third-party companies do and then either adopts it or buys the third-party company, and that's kind of what we're looking into. That's our need. It'd be a lot better if it was all under one mirror or one window, instead of having a couple of different vendors working on it. So, if Microsoft could solve that, it would be awesome. They should look at the third-party enhancements that people are doing, and then take the encryption a step further by adding those features to BitLocker. Microsoft has different components. They have identity management, but is it tied to encryption? BitLocker is mostly tied to devices, but it would be best for me if I get a piece of data and I am able to encrypt it all the way through using BitLocker. Currently, BitLocker is basically tied at the device level instead of the data level.

I would just like them to look at what other people are doing in terms of encryption as a whole and offer the encryption not only tied to the device, but also to the file level. They should add features on that in terms of access control and reporting. We should be able to see who has access to it and who has touched a file. So, we're going towards the zero trust model and the zero trust reporting. It is a "We don't trust anybody" type of deal. So, it is not just the device, it is the data. They should try to wrap it around the data at the file level and not at the device level.

View full review »
SW
Manager - ICT at a insurance company with 51-200 employees

I was looking for a better solution. It's my understanding that if you're just to generate that endpoint encryption and you just run it normally, it may not give you the actual protection you need as you don't have a centralized server.

At the end of it all, we are looking for something that can be easier to manage. Everything that you need to do manually can end up being an issue. If it's a product that can be automated, I would be happier with it. Right now, with the way it is arranged, it's a bit manual as it isn't centralized.

View full review »
JM
ICT operations and security manager

User profiles can be improved so that people can create their own passwords. It has one password per machine, which is a problem. We would prefer each user to have his or her own boot password. Each user can have a username and password or biometrics, such as fingerprints and iris scanner, integrated into the boot process, but I really can't see that coming anytime soon, if ever.

View full review »
Learn what your peers think about Microsoft BitLocker. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
563,780 professionals have used our research since 2012.
Director IM/IT at Sustainable Development Technology Canada

In the next generation, it could have a higher level of encryption.

I would like to be able to encrypt our cloud tenancy.

I would like to have the ability to encrypt a cloud-based server with BitLocker.

View full review »
AP
Director, Cryptographic Engineering at a financial services firm with 10,001+ employees

Right now, the problem for us is, if a laptop is stolen, how they address it with the hard drive if it is already protected in BitLocker? We cannot protect anything until we have a centralized server feed where w can get all the information from all the laptop and the device if it does get stolen. Currently, to solve this, we are using a solution called Unbound.

I'm a hardcore developer. I don't know whether the solution has any source files. That said, I don't see anything that's really lacking, feature-wise. 

It's possible that the time it takes to pull items in to BitLocker could be reduced a bit. It can take a long time - sometimes up to 90 minutes.

View full review »
BF
Desk Top Operation Manager at a government with 10,001+ employees

I think there is some room for improvement for end users and technical staff. They are the ones required to support the computers, learn how the solution functions and to troubleshoot. For now, they have to wing it most of the time and it could be better. 

For additional features, I'd like to see something more manageable by our agency. We had a portal where we could manage these. I know there are products out there that have portals where you can actually manage the BitLocker and that would be much better. If we lose a computer now it's unclear whether Absolute Computrace can find it if it's been encrypted. 
We have some issues with Microsoft about that. 

View full review »
IS
IT Security Specialist at a tech services company with 201-500 employees

For our company's needs, the solution works very well.

From a retail standpoint, in terms of Microsoft licensing, you need to purchase an enterprise-level version of the licensing tool to get the level of manageability that's needed. However, this is only offered to very large enterprises.

The solution should offer encryption for other items such as shared folders, removable media, etc.

The solution should recreate the key when Windows is upgraded to a newer version.

View full review »
KC
Director at Pathfinder

The visualization could be better. I don't have any complaints about the usability of the stability of it and he licensing is quite reasonable actually.

View full review »
JH
Chief Information Security Officer at a healthcare company with 1,001-5,000 employees

It is not good for cross-compatibility, so our Mac users are not able to use it.

The support for Linux and Macs is really the only thing that we are missing.

View full review »
VP - Head Enterprise IT Infrastructure at MIB

The price of this solution should be more competitive.

The first level of technical support needs to be improved.

View full review »
IT Manager at a tech services company with 10,001+ employees

The console GUI could be better.

The initial setup could be simplified.

View full review »
Learn what your peers think about Microsoft BitLocker. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
563,780 professionals have used our research since 2012.