Share via

Latest Windows update has locked my device

Rick Lean 0 Reputation points
2025-10-22T07:35:42.4233333+00:00

My Surface Pro (Windows 10 Pro) performed a Windows update last night and now Bit Locker has been activated

This is rather suspicious given MS is dropping support for Win10, so, rather annoyed to say the least.

Is was a perfectly good reliable operating device. No, I did not intend using it for on going internet connection, stull useful for other things, ie CAM recording.

Windows for business | Windows Client for IT Pros | Devices and deployment | Other
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Joseph Tran 3,200 Reputation points Independent Advisor
    2025-10-22T08:23:46.3266667+00:00

    Hi, There

    As I knew, the reason it suddenly turned on Modern Surface devices can auto-enable “Device encryption” (BitLocker) after an update/firmware tweak, especially if you ever signed in with a Microsoft account or the device was in an org. Kinda annoying, but not a trap.

    Right now I need you to follow these suggestions bellow

    1. Check status

    • Settings > Update & Security > Device encryption or
    • Control Panel > BitLocker Drive Encryption or
    • Admin CMD: manage-bde -status

    2. Save the recovery key (once)

    • In your Microsoft account’s Devices page, or your org’s portal if it’s managed.

    3. Turn it off (decrypt)

    • GUI: Control Panel > BitLocker Drive Encryption > Turn off BitLocker (for C:)
    • Or Admin CMD: manage-bde -off C: Keep it powered on until decryption finishes. Check progress with manage-bde -status.

    Just need it to stop nagging for now? Suspend protectors: manage-bde -protectors -disable C: -RebootCount 0

    If you really need to keep it from coming back

    • Leave Device encryption = Off in Settings.
    • Use a local account; avoid Azure AD/Intune management.
    • (Optional) Block auto-encryption: add PreventDeviceEncryption=1 under HKLM\SYSTEM\CurrentControlSet\Control\BitLocker and reboot.

    => For an offline CAM box Decrypt, stay on a local account, keep it offline, and you’re done.

    => If you hit a blue BitLocker recovery screen, share the first 8 digits of the Recovery key ID shown there and I’ll map it to the right key.

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.