But the more direct AD query uses the ActiveDirectory module:
manage-bde -protectors -adbackup c: -id existing-protector-GUID Or, back up all protectors for C: drive:
Introduction When BitLocker Drive Encryption is deployed in a managed enterprise environment, Group Policy can be configured to automatically store the recovery password (and key package) in Active Directory. This is a critical disaster recovery measure: if a user forgets their PIN, loses their smart card, experiences a TPM malfunction, or moves a drive to another computer, the recovery key is required to unlock the encrypted volume.
