This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 81%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGD%3C/text%3E%3C/svg%3E)
Hi Team,
I have a device that is hybrid-joined and co-managed. The system drives are encrypted using BitLocker and the recovery key is stored in Entra. The device is being migrated from one domain to another using a third-party tool called ForensIT User Profile Wizard. The Device migration software doesn't specify anything regarding interacting with the Drives that are encrypted.
How should we deal with the BitLocker encrypted drives during migration? Any suggestion is appreciated.
Thanks.
Using 3rd party migration tools are not supported by Microsoft in this kind of scenarios. If you want the supported method, then a device reset\re-image is the recommended way. Maybe use this as an opportunity to go Entra ID join only.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 9%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWL%3C/text%3E%3C/svg%3E)
Hello
By saying "Migrating", do you mean copy the disk device to another disk?
I am afraid this is not a offcial support scenario.
Unsupported Scenarios
The following scenarios are not supported:
Sysprep (System Preparation) Overview | Microsoft Learn
To ensure the data safety, we may try to decrypt the bitlocker driver. At least, we need to backup the important data before we take any actions.