Which Group Policy object (GPO) setting should you configure?
You have a client Windows 10 Enterprise computer. The computer is joined to an Active Directory domain. The computer does not have a Trusted Platform Module (TPM) chip installed.
You need to configure BitLocker Drive Encryption (BitLocker) on the operating system drive.
Which Group Policy object (GPO) setting should you configure?
A . Allow access to BitLocker-protected fixed data drives from earlier version of Windows.
B . Require additional authentication at startup.
C . Allow network unlock at startup.
D . Configure use of hardware-based encryption for operating system drives.
Answer: B
Explanation:
To make use of BitLocker on a drive without TPM, you should run the gpedit.msc command. You must then access the Require additional authentication at startup setting by navigating to Computer ConfigurationAdministrative TemplatesWindows ComponentsBit Locker Drive EncryptionOperating System Drives under Local Computer Policy. You can now enable the feature and tick the Allow BitLocker without a compatible TPMcheckbox.
Latest 70-697 Dumps Valid Version with 339 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund