Skip to main content

Recovery failed because of Bit Locker encryption

Thread needs solution
Beginner
Posts: 3
Comments: 1

I have been trying to recover an image of my computer that I made with Acronis True Image 2017.

 

I am getting the message: 'Unable to continue the operation that requires a reboot, because a volume encrypted with BitLocker has been detected. Please use Acronis bootable media. '

 

I created an Acronis Universal Boot media on a flash drive and put it into one of the computer 's slots. I then tried to restore my image again. I still got the same message.

 

How do I properly setup and run a program that will recover my image?

 

Any help would be much appreciated.

 

Paul N.

paulqzq@gmail.com

0 Users found this helpful
Forum Hero
Posts: 207
Comments: 5015

Universal restore will not help. What you have to do is to unlock the drive encrypted using Bitlocker. I assume you save the encryption key for that partition. If not, if you can still access the partition you can "recover" the encryption password and save it to a file. The Acronis user manual give no guidance on what to do, it suggests that it is impossilbe to recover backups of encrypted drives - see 11.1.1 extracted below

 

11.1.1 Acronis Media Builder
Acronis Media Builder allows you to make a USB flash drive or a blank CD/DVD bootable. In case Windows cannot start, use the bootable media to run a standalone version of Acronis True Image and recover your computer.
You can create several types of bootable media:
 Acronis bootable rescue media
This type is recommended for most users.
 WinPE-based media with Acronis plug-in
Running Acronis True Image in the preinstallation environment may provide better compatibility with your computer’s hardware because the preinstallation environment uses Windows drivers.
We recommend that you create this type of media, when Acronis bootable rescue media did not help you boot your computer.
To use this option, you need one the following components to be installed:
 Windows Automated Installation Kit (AIK).
This component is required for creating WinPE 3.0.
 Windows Assessment and Deployment Kit (ADK).
This component is required for creating WinPE 4.0, WinPE 5.0, and WinPE 10.0.
Notes
 We recommend that you create a new bootable media after each Acronis True Image update.
 If you use non-optical media, the media must have FAT16 or FAT32 file system.
 Acronis Media Builder supports only x64 WinPE 3.0, WinPE 4.0, WinPE 5.0, and WinPE 10.0.
 Your computer must have:
 For WinPE 3.0—at least 256 MB RAM
123 Copyright © Acronis International GmbH, 2002-2016
 For WinPE 4.0—at least 512 MB RAM
 For WinPE 5.0—at least 1 GB RAM
 For WinPE 10.0—at least 512 MB RAM
 If Acronis Media Builder does not recognize your USB flash drive, you can try using the procedure described in an Acronis Knowledge Base article at http://kb.acronis.com/content/1526.
 When booting from the Rescue Media, you cannot perform backups to disks or partitions with Ext2/Ext3/Ext4, ReiserFS, and Linux SWAP file systems.
When booting from the rescue media and using a standalone version of Acronis True Image you cannot recover files and folders encrypted with use of the encryption available in Windows XP and later operating systems. For more information, see File-level security settings for backup (p. 61). On the other hand, backups encrypted using the Acronis True Image encryption feature can be recovered.

However, it is (as I understand it) possible to recover the data using the MVP Tool - CUSTOM ATI WINPE BUILDER. Unfortunately some versions of the recovery media cannot recover data even when the command to unlock the drive is executed - it still says the drive is encrypted.

The following is my understanding of what happens but I cannot vouch for the accuracy! If the backup was made from within Windows when the drive is unlocked the backup is not encrypted with Bitlocker, it would be encrypted by ATI 2017. If the backup was made with the recovery media then it would be encrypted with Bitlocker unless it was unlocked first. Other MVPs are more knowledgable of the issues with Bitlocker encrypted drives and they will hopefully respond,

 

Legend
Posts: 110
Comments: 28540

Paul, please consider editing your original post for this topic and removing your Gmail address to avoid it being picked up by Spam bots etc given this is a public forum.

I am getting the message: 'Unable to continue the operation that requires a reboot, because a volume encrypted with BitLocker has been detected. Please use Acronis bootable media. '

The above sentence suggests you are starting recovery from within Windows which is not recommended - the Acronis Rescue Media should be used for any OS recovery but as Ian has mentioned, you need to be able to unlock any BitLocker protected drives as the ATI rescue media or restart offline environment do not have any support for BitLocker.

My first question is to ask whether BitLocker is actually enabled, and whether it was enabled at the time the backup created using ATI 2017 was made?  If you backup was created from within Windows using ATI then the actual backup image is not encrypted by BitLocker so should be able to be restored to a non-encrypted target drive.

One option to consider is to wipe the target drive fully before attempting to do the recovery using the rescue media, but please ensure that there is nothing on the drive that you want to keep if doing this!!

Assuming that you have another working computer, then one method of wiping the target drive would be to remove it from the original computer and attach it via a USB adapter to the second computer, then use an Administrator command prompt to issue 'diskpart' commands as below.

diskpart
list disk
select disk X
clean

You need to be very careful when using diskpart as it is very powerful and will wipe the selected disk when the clean command is used, so please ensure that you identify the correct disk from the 'list disk' command and then select that correct disk in that command.  If you make a mistake it will not ask you if you are sure but will do exactly what you have asked!!

An alternative approach is to create the WindowsPE version of the Acronis Rescue Media and perform the above commands on the original computer from the PE command window, ensuring that only the target disk is connected.

See KB 58816: Acronis True Image 2017: Creating Acronis Bootable Media - and KB 59184: Acronis True Image 2017: How to create a WinPE-based bootable media for more information on creating the media.

KB 59877: Acronis True Image: how to distinguish between UEFI and Legacy BIOS boot modes of Acronis Bootable Media

KB 59873: Acronis True Image: recovering Windows from a boot failure