When Windows won't boot and you're in the recovery console, you might need the BitLocker recovery key to unlock the drive. This command retrieves it if available.

The Fix

# From Windows Recovery Environment Command Prompt
manage-bde -protectors -get C:

Why it works

  • The manage-bde command-line tool is used for BitLocker Drive Encryption. The -protectors -get option lists all key protectors for the specified drive, including the recovery password if it's stored on the drive itself (or accessible via Active Directory/Microsoft Account login).

Verify

  • The output will display a Numerical Password with a 48-digit number, which is your BitLocker recovery key.

Notes

  • This command is typically run from the Windows Recovery Environment (WinRE) Command Prompt.
  • Requires Administrator privileges if run from a booted Windows environment.
  • The recovery key is also typically stored in your Microsoft account (if using a personal device) or in Active Directory (for corporate devices).

Techworks Blog