Versions Compared

Old Version 39

changes.mady.by.user Dan Svendsen

Saved on

compared with

New Version Current

changes.mady.by.user Dan Svendsen

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

BitLocker variables

Expand
titlegsDrivesToEncrypt / gsDrivesToDecrypt

The variable value can be All or System

Default setting = All (recommended)

All = All fixed drives are encrypted/decrypted

System = Only the operating system drive is encrypted/decrypted

Image ModifiedImage ModifiedImage Modified
Expand
titlegbFailPackageOnError

The variable value can be True or False

Default setting = False (recommended)

True = Package Status will be set to Failed in the CapaInstaller Console, when the first non-critical error is detected

False = Package status will be set to Installed in the CapaInstaller Console, when non-critical errors are detected

In the examplebelow, an error is written to the logfile, because gbFailPackageOnError is set to True

Image ModifiedImage Modified

In the example below, a warning is written to the logfile, because gbFailPackageOnError is set to False

Image ModifiedImage Modified
Expand
titlegbMaskSensitiveData

The variable value can be True or False

Default setting = True (recommended)

True = The last 4 digits of the Recovery Key ID and the Recovery Key Password is replaced with asterisk characters in the log file located on the endpoint

False = The full value of the Recovery Key ID and the Recovery Key Password is visible in the log file located on the endpoint

Image Modified
Expand
titlegbSaveRecoveryKeyInActiveDirectory

The variable value can be True or False

Default setting = True (recommended)

True = Recovery Key is saved in Active Directory

False = Recovery Key is not saved in Active Directory

Image Modified

(lightbulb) CapaBitLocker automatically detects if the domain is availabe before saving the recovery key in Active Directory

Expand
titlegbSaveRecoveryKeyInCapaInstaller

The variable value can be True or False

Default setting = True (recommended)

True = Recovery Key is saved in CapaInstaller Custom Inventory

False = Recovery Key is not saved in CapaInstaller Custom Inventory

Image Modified
Expand
titlegbWaitForEncryptionToComplete / gbWaitForDecryptionToComplete

The variable value can be True or False

Default setting = True

True = Package will wait for encryption of drives to finish, before changing status to Installed

False = Package will initiate encryption of drives and change status to Installed afterwards

Image Modified

(lightbulb) All recovery keys are saved and auto-unlock on data drives are enabled, immediately after drive encryption has been initiated

Expand
titlegiRebootCount

The variable value can be a number between 0 and 10

Default setting = 1

0 = BitLocker is suspended infinitely and must be resumed manually

1-10 = BitLocker is suspended until the specified number of reboots has been performed

(lightbulb) BitLocker is suspended instantly

Common variables

Expand
titlegsIpAddressesToExclude

The variable value can be a full or a partial IPv4 address on endpoints that should be excluded

Default setting = ""

The * character must be used as a wildcard, when defining partial IPv4 addresses

The , character must be used when defining multiple IPv4 addresses

Example : 192.168.100.*,192.168.101.*

...