Is it possible to have (preferrably with Windows-on-board tools of Windows Server 2012 R2 and Windows Server 2016) to have a software raid mirror on 2 encrypted disks? (Locally preferred.)
From what I know, I have to use an SSD for normal/fast hardware encryption (at least via Bitlocker), so I am planning to put 2 ssd disks into a SW mirror.
I want to achieve 2 things:
1) theft protection
a) if hardware gets stolen, drives are useless to thief
2) failure protection
a) if a drive fails, the other takes over and the failed drive can be replaced
b) if the pc fails, the drives run in another pc (or at least can be recovered)
The drives will be home of some VM hard drives, so they don't need to be bootable/system drive.
They should unlock automatically on Windows startup though, in order to reboot the machines unattended, also to have the hyper-v vhds available straight away.
Is this possible? If so, how is this possible?
Best Answer
This is definitely possible, and not too difficult to achieve.
What you have to do is get a hardware RAID controller (Bitlocker doesn't work on software RAIDs), and set two drives up in RAID 1, so that even if one of the drives fails, the other has a complete copy of all the data.
Once you have the drives set up in a RAID array, all you have to do is configure Bitlocker as you normally would on a drive. Bitlocker drives can be decrypted on other PCs.
So if the computer stops working, you can access your data from another computer, and if someone steals your drives, they won't be able to access your data.