Your network contains an Active Directory domain. The domain contains Windows 8.1 Enterprise client computers.
Users frequently use USB drives to store sensitive files that are used on multiple computers. Your corporate security policy states that all removable storage devices, such as USB data drives, must be encrypted.
You need to ensure that if a user forgets the password for a USB disk that is encrypted by using BitLocker To Go, the user can resolve the issue themself.
What should you do?
A. Implement the BitLocker Network Unlock feature.
B. Publish a data recovery agent certificate by using a Group Policy object (GPO).
C. For each computer, create a USB startup key.
D. Instruct the user to open BitLocker Drive Encryption, select Back up recovery key, and then select Save to a file.
