How to use Windows 11 Pro to create an encrypted virtual drive

How to use Windows 11 Pro to create an encrypted virtual drive

Protecting your data is essential in today's digital age, where cyber criminals are becoming increasingly sophisticated in their hacking and phishing attempts. One way to safeguard your sensitive information is by storing it in a virtual drive (also known as VHD) and encrypting it using Bitlocker. However, you'll need Windows 11 Pro to activate Bitlocker, so ensure you've got the right version of the operating system.

Although Bitlocker and VHD are standard Windows tools, they can be used to create a secure virtual drive that's both private and accessible only when authorized. In this article, we'll guide you through the process of creating a virtual drive and activating Bitlocker using Windows 11 Pro.

Create a Virtual Drive

The first step in this process is to create a virtual drive. To do this, follow these steps:

  • Open the Windows search bar and type "Diskmgmt.msc" to launch Disk Management.
  • Select "Action – Create Virtual Hard Drive" from the menu.
  • In the "Storage Location" field, specify where you want to save the VHD file of the virtual drive. You can easily move the file later and also enter the desired size of the future data vault.

Additionally, you have the option to select "Dynamically Expandable," which means the VHD file starts with 0 KB and only gets larger when you copy files to the drive.

Assign Virtual Drive

The new virtual hard drive initially appears as "Unassigned" in the data volume management below. To change this, follow these steps:

  • Right-click on "Disk [number]," "Disk Initialization," and then right-click the "Unassigned" field.
  • Select the option "New Simple Volume" from the menu.
  • Answer the dialogue with the wizard by selecting "Next," but remember the suggested drive letter.

At the end, Windows Explorer starts automatically and displays the new virtual drive. You will find the corresponding VHD file in the location you specified.

Activate Bitlocker

To activate Bitlocker, follow these steps:

  • Right-click on the new drive in Windows Explorer and select "Activate Bitlocker."
  • You'll need a Pro version of Windows to do this.
  • Set a password and save the recovery key. Follow the wizard's instructions and complete the process by clicking "Start Encryption."

With Bitlocker activated, you can now copy data to the encrypted drive. As long as you have mounted the drive and are logged in with your account, you have access to the data.

Disconnect and Remount the Drive

To protect the drive from unauthorized access, simply log out of Windows. To remove the drive from Windows, right-click on the drive in Windows Explorer and select "Eject."

To remount the VHD file, start Disk Management (Diskmgmt.msc) again and click on "Action – Mount Virtual Hard Drive." In the following dialogue, select the desired VHD file via "Browse" by double-clicking on it.

About the Author

Arne Arnold has been working in the IT industry for over 30 years, most of that time with a focus on IT security. He tests antivirus software, gives tips on how to make Windows more secure, and is always looking for the best security tools for Windows.

He is currently trying out new AI tools and questioning what they mean for our future.