BitLocker management

Bitlocker management

WinMagic’s SecureDoc Enterprise Server (SES) offers organizations total control over their data security environment, ensuring maximum security and transparency in regular workflow. With SecureDoc BitLocker Management, organizations can take advantage of Microsoft’s native OS encryption, while tightening security through improved authentication and integration with SecureDoc PBConnex.

Best set of features/functionality for IT administration

One console to manage all endpoint encryption in the enterprise


Support multiple users on single system

Pre-boot network and multi-factor authentication


Can be silently deployed with no user interaction

Intelligent installer to choose BitLocker, SecureDoc or Hardware Encryption

BitLocker encryption is a solid starting point for device encryption on native OS, but enterprises need more if they are to have a true comprehensive strategy for securing all devices across all platforms. WinMagic can manage your BitLocker deployment, leverage your existing investment and layer additional security functionality to fully realize the benefits of endpoint or device encryption on all platforms. You’ll enjoy more granular control through better user and administrator flexibility as well as unique pre-boot authentication technology to lower IT costs and increase efficiency.

One console, many possibilities

MBAM (Microsoft BitLocker administration and monitoring) is a good solution for managing BitLocker deployments but, as a Windows-only solution, it can’t manage everything in a typical enterprise. Microsoft BitLocker can’t provide encryption for MacOS, Linux and other systems that require security and protection, and other encryption can’t be managed by MBAM. SecureDoc is platform agnostic, not limited to Windows-based devices and protects sensitive data residing on multiple endpoints such as laptops, desktops, servers, removable media and IoT devices.

Learn more  Download BitLocker Toolkit

BitLocker Management Console
Bitlocker Management Simplified

Bitlocker management simplified

SecureDoc improves on BitLocker’s encryption capabilities. Designed with the heterogeneous IT environment in mind, SecureDoc organizes all security-related management under one centralized enterprise server. That includes policies, password rules, and the manageability of encryption across SEDs, TPM, PC, Mac and Linux platforms.

Using SecureDoc, enterprises can now manage BitLocker within this single umbrella.

Add pre-boot network authentication to BitLocker

SecureDoc further enhances BitLocker by being the only data encryption and management solution that supports pre-boot network authentication (PBNA) for BitLocker through its PBConnex technology.

PBConnex uses network-based resources to authenticate users, enforce access controls, and manage endpoint devices before the operating system loads. It means security is enhanced through authentication at pre-boot rather than at the Windows login. And it improves policy protection by making it easy for administrators to push system updates.

Add Pre-Boot Network Authentication to BitLocker
Simplified Data Security

Simplified data security

WinMagic’s SecureDoc enhances your BitLocker deployment by making it simpler, more secure and easier to manage.

  • Secure and self-help password recovery
  • Simplified password recovery
  • Password synchronization, single sign-on and multi-factor authentication
  • Support for self-encrypting drives
  • No TPM chip required
  • Multiple platform support 



Learn more about BitLocker management from our blog

 SES BitLocker ManagementMBAM

With SecureDoc

With BitLocker


Pre-Boot Authentication

Unique user authentication at pre-boot
Pre-Boot network user authentication (AD)
Multifactor authentication (tokens, smartcards, biometrics)
Secure network auto unlock
Offline self-help password recovery option
Challenge and response password recovery
Customizable Pre-Boot Screen

Windows Security Features

Single Sign on
Password Synchronization
Policy driven Removable Media encryption with key management
Policy driven File and Folder encryption with key management
Challenge and response password recovery for removable media encryption
Port Control

Auditing and Reporting

Client pre-boot login auditing
BitLocker Recovery key access auditing

Installation and Deployment

Single location to configure BitLocker policies (No need to configure GPO)
Automatic TPM Provisioning
Ability to secure and manage OS that do not support BitLocker
Supports Self-Encrypting drives (TCG Opal drives)
Supports Self-Encrypting Drives (E-Drive)
Supports importing of standalone BitLocker enabled machines into centralized management
Silent deployment with no user interaction

With SecureDoc

With BitLocker