I'm working on improving some sql stored procedures and our server health monitoring processes that are mainly driven by sql today. One of them is checking the server hard drives bitlocker status.
I have a sproc that runs xp_cmdshell 'manage-bde -status' and looks for the auto unlock status for our external back up drive.
Running it through the stored procedure that runs as a SQLServiceAccount administrator account returns auto unlock enabled.
However running it through cmd line on any other local user account shows it disabled. Not finding much about this online, anyone have experience with this?