| Event Id | 25611 |
| Source | Microsoft-Windows-BitLocker-Driver |
| Description | Metadata commit: No copies of metadata on volume %2 could be written. If failures continue, decrypt volume. |
| Event Information | According to Microsoft : Cause : This event is logged when no copies of metadata on volume could be written. Resolution : Rebuild volume metadata by disabling and re-enabling BitLocker In order to successfully unlock volumes protected with BitLocker Drive Encryption, BitLocker must be able to read information about the volume and the encryption stored on the volume itself, called "volume metadata." BitLocker keeps multiple copies of the volume metadata and verifies the data after each time it is written. In order to recreate the metadata, disable and re-enable BitLocker by performing the following steps. Note : If the BitLocker-protected volume is currently unlocked, we recommend copying any important data to a new volume before performing any of the following procedures. To perform this procedure, you must have membership in Administrators , or you must have been delegated the appropriate authority. To disable and re-enable BitLocker to recreate volume metadata
Verify : To verify the correct operation of BitLocker encryption and decryption, read data from and write data to an encrypted volume. The read and write should occur without error. Caution : We strongly recommend that all important data be backed up regularly. |
| Reference Links | Event ID 24611 from Microsoft-Windows-BitLocker-Driver |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.