Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 7 replies
  • Subscribers 9 subscribers
  • Views 3216 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Bitlocker - Too Many Attempts

Darth_Boss

We are using Sophos Central to manage Bitlocker encryption.  We are frequently having users call the help desk stating that Bitlocker says "too many attempts" after what they report as only a single attempt.  This seems to happen frequently after a device has not been used for a while and has rebooted automatically due to Windows updates.  We then have go through the Bitlocker recovery process to get the user into the laptop, which is often about as simple has asking the user to reset a nuclear launch code.  Then we have to get our hands on the device and perform a TPM reset.  Why does this happen and what can we do to prevent it?  Thank you.



This thread was automatically locked due to age.
Parents
  • 0

    Hi  

    This is a general behaviour of the TPM chip when there are multiple attempts as the TPM chip thinks it’s being brute forced and therefore has locked itself, preventing anyone from unlocking the drive, even with the correct PIN.

    Now here the thing is whether the user is entering the password only one time or multiple. You have mentioned that it is a single attempt but it happens when the device is not used for a while. I'd request you to check the same scenario on your test machine and see whether it is happening correctly or not.

    Regards,

    Jasmin
    Community Support Engineer | Sophos Support
    Sophos Support VideosKnowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link

  • 0 in reply to Jasmin

    Thank you Jasmin.  We see this all the time...  Users call in and swear that they only entered their pin one time, correctly, and they are locked out anyway.  The only thing I can think of is the TPM chip is not resetting the invalid attempts count even after a successful login?    

    I have a Lenovo Thinkpad E531 laptop and a Surface Pro right beside me, both running Windows 10 with Bitlocker, managed by Sophos Central.  They have both been through this scenario yet I have never seen the problem with either device.  Even if I could replicate the problem with both devices, what could I do about it?

  • +1 in reply to Darth_Boss

    Hi  

    You can try the steps listed in this article and see if it helps. 

    Shweta

    Community Support Engineer | Sophos Technical Support
    Are you a Sophos Partner? | Product Documentation@SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
    The New Home of Sophos Support Videos! - Visit Sophos Techvids
Reply Children
Unfiltered HTML