In this blog post, we talked about what causes error code 0x80072f9a when BitLocker is turned on on a Windows PC and gave six good ways to fix it. If you’re having trouble fixing this problem, try the six solutions below and see if they help to Fix BitLocker Error 0x80072f9a on Windows.
Errors with BitLocker usually happen when there are problems with validating the server’s certificate. You can check if this is true by going to Group Policy and looking at the policies for BitLocker. If you’re sure that all of the local policies are set up correctly, the error is probably caused by a problem with the BitLocker WMI class.
Try to re-register the WMI (win32_encryptablevolume) class to fix the error code 0x80072f9a. If this doesn’t fix the problem, you can try clearing the SSL state, turning off BitLocker and then turning it back on, or running an SFC scan. If none of these work, you can make a local admin account on your Windows computer. It is known that this solution works to fix problems with accessing BitLocker on Windows.
Fix: BitLocker Error 0x80072f9a On Windows
Create a Local Administrator Account
- To open the Settings, press the Windows key + I.
- Click “Restart now” next to Advanced Startup after going to System > Recovery.
- Click Troubleshoot, then click Advanced Options, then click Command Prompt.
- Type the following command into the Command Prompt and press Enter:
- net user administrator:yes
- Start your device back up, log in with the local administrator account, and see if the error still shows up.
Checking within the BIOS
- Go to TPM Security in Security.
- Make sure the box next to “Activate” is checked.
- Save your changes and leave the BIOS.
Verify BitLocker Group Policy Settings
- Press the Windows key and the letter R to bring up the Run box.
- Press Enter after typing “gpedit.msc” to open the Group Policy Editor.
- Go to the following path in the Group Policy Editor: BitLocker Drive Encryption is found in Computer Configuration > Administrative Templates > Windows Components > Windows Components.
- Look over the policy settings and set them up as needed.
Re-register the BitLocker WMI (win32_encryptablevolume) Class
- Start the command line.
- Type in and hit Enter on the following command:
- win32_encryptablevolume.mof c:windowssystem32wbemmofcomp.exe
- If the command works, you will see the following message: “MOF file has been read correctly. Done! Putting data in the repository.”
- Close the Command Prompt, restart your device, and check to see if the BitLocker Error Code 0x80072f9a is gone.
Try Clearing the SSL state
- Press Windows + S to launch the Search window.
- Type Internet options in the text field, and hit Enter.
- Head over to the Content tab next, and click on the button – “Clear SSL State“.
- Doing this will purge the SSL certification attached to your device. Click OK when a pop-up appears next.
- Coming back to the Internet Properties window next, hit OK again.
Disable and Re-enable BitLocker
- Open an elevated Command Prompt.
- To disable BitLocker, type the following and hit Enter:manage-bde -off C:
- Now, enable BitLocker by running the following command:manage-bde -on C:
FAQs
A key may be saved to your Microsoft Account by default (search BitLocker Recovery Keys to retrieve the key). If the device was set up or BitLocker protection was activated by another user, the recovery key may be in that user’s Microsoft account.
Bitlocker recovery mode can be activated in a number of ways, such as when someone or something tries to change the startup environment in a bad way. A good example is a rootkit. Putting the hard drive that is protected by BitLocker into a new computer.
