Confidence in Every Log In, 24/7

Specops Key Recovery

Help users securely manage encryption device lockouts.

Specops Key Recovery is an enterprise self-service solution for unlocking devices encrypted by BitLocker and Symantec Endpoint Encryption. A user who’s locked out at the pre-boot authentication screen can use Specops Key Recovery to unlock their computer, without calling the IT service desk. For added security, users are verified with multi-factor authentication before receiving a recovery key.

Specops Key Recovery Gif

Self-service key recovery

FDE (full-disk encryption) solutions such as BitLocker and Symantec Endpoint Encryption, create a pre-boot authentication environment that requires a secret key when the computer is started, or when a lockout is triggered. But without a self-service recovery solution, FDE will drive calls to your helpdesk.

2026 password protection

Self-service for BitLocker

  • BitLocker lockouts can be caused by hardware changes or occur when working remotely. When a lockout is triggered, the user must call the helpdesk for a recovery password
  • To verify the user, the helpdesk will commonly use security questions, which are prone to social engineering
  • Specops Key Recovery reduces calls to the helpdesk, and increases security. The solution verifies users with multi-factor authentication so they can receive a recovery key

Self-service for Symantec Endpoint Encryption

  • Symantec Endpoint Encryption lockouts occur when a user forgets their password or changes their password while working remotely
  • If the user has forgotten the old password they will need to contact the helpdesk for a recovery key every time they restart their computer
  • When combined with our self-service password reset solution, Specops Key Recovery updates the cached credentials, triggering re-encryption with a new password. This allows the user to authenticate with their new password, even if they’re outside the corporate network

MFA with pre-enrollment

  • With Specops Key Recovery, administrators can enroll users for multi-factor authentication without requiring users to enroll themselves
  • This is possible with identity services that have identifier information stored in Active Directory, such as Symantec VIP, Duo Security, Okta, and PingID, Mobile Code, and Manager Identification
  • The enrollment information can also be used for self-service password reset, allowing users to manage their passwords in a secure way

Customer Reviews From Gartner Peer Insights & More

See what satisfied customers on Gartner Peer Insights had to say after buying and deploying Specops.

Visit Gartner
Read Full Review
Amazing lightweight tool which can be installed and used within minutes, provides key security information on what your users are doing with there password decisions and also there inactivity. Creates actionable spreadsheets and pdf's so you can target the users who are using breached passwords.
Ryan C
Infrastructure Engineer, Capterra
Read Full Review
Our company needed a way to protect our staff and IT staff from vishing impersonation calls as well as harden our password policy compliance so we could get our ISO 2700 certification. Specops provided all the tools we need all in one package."
Cybersecurity specialist
IT Security and Risk Management
Read Full Review
Specops Password Auditor provides a quick an easy method to get a view of how your organization is complying with company password policy. The drill downs allow me to view the information that is most important.
Paul M
Sr. Infrastructure Analyst, Capterra

Features

We’ve designed a self-service platform secured by MFA to reduce the load on the service desk and mitigate the security issues related to key recovery.

Multi-language support: Czech, Dutch, English, French, German, Japanese, Korean, Polish, Portuguese, Russian, Simplified Chinese, Spanish, and Swedish

15+ identity providers to enable key recovery

Available from any web browser and device

User pre-enrollment options

Customizable user interface

Block/allow self-service key recoveries by geographical location (country), or specific IP address

Book a Demo

Want a Live Demo? Let’s Talk!

See how Specops Key Recovery can address your encryption device lockouts.

Need More Info?

 

Stay in the Loop with Specops

Check our latest research, blogs, and best practices to level-up your cybersecurity program.

View All Posts

This website uses cookies to ensure you get the best experience on our website. Learn more

Got It!