[German]On July 9, 2024, Microsoft released a series of security updates for Windows. For some users, this leads to a prompt for the Bitlocker recovery key appearing when booting. I had already reported on this for Windows 11. However, Microsoft has confirmed that the problem affects virtually all Windows clients and all Windows servers that have received security updates as of July 9, 2024. Here is an overview of the issue.
Advertising
Windows updates July 9, 2024
On July 9, 2024, Microsoft released a series of security updates for Windows. I have listed these in the blog posts Patchday: Windows 10/Server Updates (July 9, 2024)
Patchday: Windows 11/Server 2022-Updates (July 9, 2024) and Windows Server 2012 / R2 und Windows 7 (July 9, 2024).
The aim of these security updates is to fix various bugs and security vulnerabilities. I quickly received reports from readers that the updates force a request for the Bitlocker recovery key. I addressed this in the blog post Windows 10/11 updates (e.g. KB5040442) trigger Bitlocker queries (July 2024), but only referred to Windows 10 and Windows 11 there. It is now clear that the problem can occur with all patched Windows versions.
Bitlocker queries confirmed by Microsoft
Microsoft has published the support article Devices might boot into BitLocker recovery with the July 2024 security update in the Windows 11 23H2 Release Health dashboard on July 23, 2024. There, Microsoft states that after installing the Windows security updates (called update KB5040442 for Windows 11 23H2) from July 9, 2024, a BitLocker recovery screen may appear when the device boots.
This behavior with the request for the Bitlocker recovery key is not normal for the update installation process. The boot process can only be continued if the user enters the Bitlocker recovery key (to be read from the Microsoft account if necessary). Only then will the drive be unlocked and Windows should boot.
This query only occurs when Bitlocker is used – which is primarily the case in corporate environments. However, I pointed out in the blog post Windows 10/11 Home Edition and the OEM Bitlocker pitfall that BitLocker is automatically activated on Windows systems with Home Editions as soon as device encryption is activated in the settings under Privacy and security -> Device encryption. This may happen automatically on OEM systems. However, most users do not know the Bitlocker recovery key, but can read it from the Microsoft account (at the portal of the BitLocker recovery screen). If you have problems finding the Bitlocker recovery key, the German article Windows-Frage: Wo speichert Bitlocker den Recovery-Key? may helps.
The following Windows clients and servers are affected by this Bitlocker recovery key query if the relevant July 2024 updates have been installed.
Advertising
- Client: Windows 11 Version 21H2 – 23H2 and Windows 10 Version 21H2 – 22H2
- Server: Windows Server 2022, Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, Windows Server 2012, Windows Server 2008 R2, Windows Server 2008.
Microsoft developers are currently investigating the problem and will provide an update as soon as more information is available.
Similar articles:
Microsoft Security Update Summary (July 9, 2024)
Patchday: Windows 10/Server Updates (July 9, 2024)
Patchday: Windows 11/Server 2022-Updates (July 9, 2024)
Windows Server 2012 / R2 und Windows 7 (July 9, 2024)
Microsoft Office Updates (July 9, 2024)
Windows 10/11 updates (e.g. KB5040442) trigger Bitlocker queries (July 2024)
Windows July 2024 updates break remote connections
Windows 11 update KB5040442 causes issues with Outlook 2021
July 2024 security update KB5040427 crashes Windows 10/Server LPD printing service
Windows Update July 2024: Are there issues with Radius authentications?
Microsoft's fixes for various Windows bugs (July 2024)
Windows 10/11 updates (e.g. KB5040442) trigger Bitlocker queries (July 2024)
Windows 10/11 Home Edition and the OEM Bitlocker pitfall
Windows-Frage: Wo speichert Bitlocker den Recovery-Key?
Advertising
