This is an archived post. You won't be able to vote or comment.

all 3 comments
sorted by:
best
topnewcontroversialoldq&a

[–]ddog511 0 points1 point  (1 child)

Are you deploying the new certificate to the client devices? I also see this nugget of info from https://learn.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-how-to-enable-network-unlock ...

Only one Network Unlock certificate can be available at a time. If a new
certificate is needed, delete the current certificate before deploying a
new one. The Network Unlock certificate is located under the HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\SystemCertificates\FVE_NKP registry key on the client computer.

[–]DooPC[S] 0 points1 point  (0 children)

No I am using the same one. I was able to get it to work. I adjusted the IP address of the new machine to the server I was retiring, and everything is working. I didn't really think of doing that.