external help file: AdminUI.PS.dll-Help.xml Module Name: ConfigurationManager ms.date: 08/13/2020 online version: schema: 2.0.0
Create a policy to configure whether BitLocker can use enhanced startup PINs.
New-CMEnhancedPIN [-PolicyState <State>] [-RequireAsciiOnlyPin] [-DisableWildcardHandling]
[-ForceWildcardHandling] [<CommonParameters>]
Create a policy to configure whether BitLocker can use enhanced startup PINs. Enhanced startup PINs permit the use of characters including uppercase and lowercase letters, symbols, numbers, and spaces. This policy setting is applied when you turn on BitLocker.
Not all computers support enhanced PINs in the pre-boot environment. Before you enable this policy, evaluate if your devices are compatible with it. Use the -RequireAsciiOnlyPin parameter to help make enhanced PINs more compatible with computers that limit the type or number of characters that you can enter in the pre-boot environment.
This example creates a policy that's enabled to allow enhanced PINs for startup.
New-CMEnhancedPIN -PolicyState Enabled
This example creates a policy that's enabled but restricts PINs to the ASCII character set.
New-CMEnhancedPIN -PolicyState Enabled -RequireAsciiOnlyPin
This parameter treats wildcard characters as literal character values. You can't combine it with ForceWildcardHandling.
Type: SwitchParameter
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
This parameter processes wildcard characters and may lead to unexpected behavior (not recommended). You can't combine it with DisableWildcardHandling.
Type: SwitchParameter
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Use this parameter to configure the policy.
-
Enabled
: If you enable this policy, all new BitLocker startup PINs will be enhanced PINs. -
Disabled
orNotConfigured
: If you disable or don't configure this policy, BitLocker won't use enhanced PINs.
Type: State
Parameter Sets: (All)
Aliases:
Accepted values: Enabled, Disabled, NotConfigured
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
Use this parameter to help make enhanced PINs more compatible with computers that limit the type or number of characters that you can enter in the pre-boot environment.
Type: SwitchParameter
Parameter Sets: (All)
Aliases:
Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False
This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.