Sorry for any confusion in the wording of my previous question. My situation with Bitlocker is a bit different from what you described. I already have it turned on in a guest but not in its host. What I would like to do now, and the reason for my question, is to turn off the actual service that is running in the host but continue using Bitlocker services in the guest if possible. I want to turn it off in the host just because I am turning off unnecessary services to save resources and reduce potential security vectors. So, in light of this, can I "continue to use it" in a guest once I have turned it off in the host?
> -----Original Message----- > From: vbox-users [mailto:vbox-us...@clevertrove.com] > Sent: Tuesday, January 29, 2013 9:23 PM > To: Community mailing list of VirtualBox users > Subject: Re: [VBox-users] services availability in guests > > > From: Daniel L. Miller [mailto:dmil...@amfes.com] > > > > On 1/29/2013 8:37 AM, John A. Wallace wrote: > > > services availability in guests > > > > > > If Iwere todisable a service in theWindows 7host such as BitLocker > > > Drive Encryption Service,woulditstill be available to use in a > guest > > > such as Vista. What about if it is already in use on a guest?In > > > general, is the same true for any service? > > > > > Something's not coming across right. The whole point of > > virtualization is to create "virtual machines". Each guest is, > > theoretically, its own entity. Each guest, regardless of O/S, has > > it's own bootloader, background processes, services, and programs. > > Virtual drives are totally distinct from the host - and guests cannot > > directly access the host drives (unless you go out of your way to > hack it which is not recommended). > > Bitlocker is special. > > Because bitlocker requires access to the TPM, which is a hardware > device at a lower level. So John has enabled bitlocker on the host OS, > and it seems, trying to enable it on the guest OS, and finding a > conflict... It's not because the host BitLocker is running; it's > because the TPM is already in use. > > So. John: If you have host bitlocker enabled, it means your whole > drive is encrypted and that includes the guest OSes. So you shouldn't > need to worry about trying to enable bitlocker on the guest OSes. > > But if you, for some reason, want to re-enable bitlocker for a double > layer of encryption on the guest, you need to grant the guest > permission to access the TPM. This is called Trusted Execution, and > it's a toggle switch in your BIOS, if your hardware supports it. It's > kind of pointless, rarely used, not well supported, unrecommended. > > > ----------------------------------------------------------------------- > ------- > Everyone hates slow websites. So do we. > Make your web apps faster with AppDynamics Download AppDynamics Lite > for free today: > http://p.sf.net/sfu/appdyn_d2d_jan > _______________________________________________ > VBox-users-community mailing list > VBox-users-community@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/vbox-users-community > _______________________________________________ > Unsubscribe: mailto:vbox-users-community- > requ...@lists.sourceforge.net?subject=unsubscribe ------------------------------------------------------------------------------ Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_d2d_jan _______________________________________________ VBox-users-community mailing list VBox-users-community@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/vbox-users-community _______________________________________________ Unsubscribe: mailto:vbox-users-community-requ...@lists.sourceforge.net?subject=unsubscribe
