{"id":809719,"date":"2026-05-19T09:04:11","date_gmt":"2026-05-19T09:04:11","guid":{"rendered":"https:\/\/www.ninjaone.com\/?post_type=script_hub&#038;p=809719"},"modified":"2026-05-19T09:04:11","modified_gmt":"2026-05-19T09:04:11","slug":"como-identificar-unidades-desbloqueadas-e-totalmente-descriptografadas-usando-o-powershell","status":"publish","type":"script_hub","link":"https:\/\/www.ninjaone.com\/pt-br\/script-hub\/como-identificar-unidades-desbloqueadas-e-totalmente-descriptografadas-usando-o-powershell\/","title":{"rendered":"Como identificar unidades desbloqueadas e totalmente descriptografadas usando o PowerShell"},"content":{"rendered":"<p>O cen\u00e1rio em constante evolu\u00e7\u00e3o da TI exige vigil\u00e2ncia em termos de seguran\u00e7a, principalmente no \u00e2mbito da prote\u00e7\u00e3o de dados. \u00c0 medida que a transforma\u00e7\u00e3o digital leva as empresas a dependerem cada vez mais de dados, a prote\u00e7\u00e3o de informa\u00e7\u00f5es confidenciais torna-se fundamental. Um aspecto fundamental da prote\u00e7\u00e3o de dados \u00e9 entender o status da criptografia de disco. Isso nos leva ao nosso ponto principal: um script do PowerShell que pode <strong>identificar o n\u00famero de unidades desbloqueadas e totalmente descriptografadas.\u00a0<\/strong><\/p>\n<h2>Hist\u00f3rico<\/h2>\n<p>A criptografia de disco \u00e9, h\u00e1 muito tempo, a pedra angular da <a href=\"https:\/\/www.ninjaone.com\/it-hub\/seguranca-de-endpoints\/what-is-information-security-infosec\/\">seguran\u00e7a das informa\u00e7\u00f5es<\/a>, especialmente em empresas que armazenam grandes volumes de dados confidenciais. Os profissionais de TI e os <a href=\"https:\/\/www.ninjaone.com\/what-is-an-msp\/\">provedores de servi\u00e7os gerenciados (MSPs)<\/a> se esfor\u00e7am para garantir que as unidades de disco permane\u00e7am criptografadas para impedir o acesso n\u00e3o autorizado. O monitoramento do status da criptografia torna-se uma tarefa cr\u00edtica, da\u00ed a necessidade de scripts eficientes que esclare\u00e7am quais unidades podem estar vulner\u00e1veis. Nosso script atende exatamente a essa necessidade.<\/p>\n<h2>O roteiro<\/h2>\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\">#Requires -Version 2.0\r\n\r\n&lt;#\r\n.SYNOPSIS\r\n    Returns the number of drives in the Unlocked and FullyDecrypted state.\r\n.DESCRIPTION\r\n    Returns the number of drives in the Unlocked and FullyDecrypted state.\r\n.EXAMPLE\r\n    No parameters needed.\r\n.EXAMPLE\r\n    PS C:&gt; Get-UnencryptedDiskCount.ps1\r\n    No Parameters needed\r\n.OUTPUTS\r\n    int\r\n.NOTES\r\n    Minimum OS Architecture Supported: Windows 7, Windows Server 2012\r\n    Uses manage-bde.exe or Get-BitLockerVolume depending on the version of PowerShell\r\n    Release Notes:\r\n    Initial Release\r\nBy using this script, you indicate your acceptance of the following legal terms as well as our Terms of Use at https:\/\/www.ninjaone.com\/terms-of-use.\r\n    Ownership Rights: NinjaOne owns and will continue to own all right, title, and interest in and to the script (including the copyright). NinjaOne is giving you a limited license to use the script in accordance with these legal terms. \r\n    Use Limitation: You may only use the script for your legitimate personal or internal business purposes, and you may not share the script with another party. \r\n    Republication Prohibition: Under no circumstances are you permitted to re-publish the script in any script library or website belonging to or under the control of any other software provider. \r\n    Warranty Disclaimer: The script is provided \u201cas is\u201d and \u201cas available\u201d, without warranty of any kind. NinjaOne makes no promise or guarantee that the script will be free from defects or that it will meet your specific needs or expectations. \r\n    Assumption of Risk: Your use of the script is at your own risk. You acknowledge that there are certain inherent risks in using the script, and you understand and assume each of those risks. \r\n    Waiver and Release: You will not hold NinjaOne responsible for any adverse or unintended consequences resulting from your use of the script, and you waive any legal or equitable rights or remedies you may have against NinjaOne relating to your use of the script. \r\n    EULA: If you are a NinjaOne customer, your use of the script is subject to the End User License Agreement applicable to you (EULA).\r\n.COMPONENT\r\n    Misc\r\n#&gt;\r\n\r\n[CmdletBinding()]\r\nparam ()\r\n\r\nbegin {\r\n    function Test-IsElevated {\r\n        $id = [System.Security.Principal.WindowsIdentity]::GetCurrent()\r\n        $p = New-Object System.Security.Principal.WindowsPrincipal($id)\r\n        if ($p.IsInRole([System.Security.Principal.WindowsBuiltInRole]::Administrator))\r\n        { Write-Output $true }\r\n        else\r\n        { Write-Output $false }\r\n    }\r\n    function Get-DriveLetter {\r\n        param()\r\n        Get-Disk | Where-Object { $_.bustype -ne 'USB' } | Get-Partition | Where-Object { $_.DriveLetter } | Select-Object -ExpandProperty DriveLetter\r\n    }\r\n    function Invoke-ManageBDE {\r\n        [CmdletBinding()]\r\n        param ()\r\n        # Check if manage-bde.exe is available\r\n        if ((Get-Command -Name \"manage-bde.exe\" -ErrorAction SilentlyContinue)) {\r\n            # Get physical drives\r\n            Get-DriveLetter | ForEach-Object {\r\n                $DriveLetter = $_\r\n                $ReturnObj = [PSCustomObject]@{\r\n                    MountPoint = \"$_`:\"\r\n                }\r\n                # Get data from manage-bde.exe and convert the text to objects for easier processing \r\n                (manage-bde.exe -status \"$_`:\") -split \"`n\" | Where-Object { $_ -like \"*:*\" } | ForEach-Object {\r\n                    $First = ($_ -split \":\")[0].Trim() -replace ' '\r\n                    $Last = ($_ -split \":\")[1].Trim() -replace ' '\r\n                    if ($First -notlike \"Name\" -and $First -notlike \"BitLocker Drive Encryption\" -and $First -notlike \"Volume $DriveLetter\") {\r\n                        if ($First -like \"ConversionStatus\") {\r\n                            # Renames ConversionStatus to VolumeStatus to match Get-BitLockerVolume's output\r\n                            $ReturnObj | Add-Member -MemberType NoteProperty -Name \"VolumeStatus\" -Value $Last\r\n                        }\r\n                        else {\r\n                            $ReturnObj | Add-Member -MemberType NoteProperty -Name $First -Value $Last\r\n                        }\r\n                    }\r\n                }\r\n                $ReturnObj\r\n            } | Select-Object MountPoint, LockStatus, VolumeStatus\r\n        }\r\n        else {\r\n            Write-Host \"Windows Feature BitLocker is not install.\"\r\n            Write-Output 0\r\n        }\r\n    }\r\n}\r\nprocess {\r\n    if (-not (Test-IsElevated)) {\r\n        Write-Error -Message \"Access Denied. Please run with Administrator privileges.\"\r\n        exit 1\r\n    }\r\n    $Result = if ($PSVersionTable.PSVersion.Major -le 4) {\r\n        Invoke-ManageBDE\r\n    }\r\n    else {\r\n        try {\r\n            Get-DriveLetter | Get-BitLockerVolume | Select-Object MountPoint, LockStatus, VolumeStatus\r\n        }\r\n        catch {\r\n            Write-Output \"Falling back on manage-bde.exe\"\r\n            Invoke-ManageBDE\r\n        }\r\n    }\r\n    $UnencryptedDisks = if ($Result) {\r\n        (($Result | Where-Object { \"Unlocked\" -like $_.LockStatus -and \"FullyDecrypted\" -like $_.VolumeStatus }).LockStatus).Count\r\n    }\r\n    else {\r\n        (Get-DriveLetter).Count\r\n    }\r\n    \r\n    # Return a count of Unlocked drives\r\n    Write-Host \"Unencrypted Disk Count: $UnencryptedDisks\"\r\n    # Return an exit code of 2 if more than 1 disk is unencrypted\r\n    if ($UnencryptedDisks -gt 0) {\r\n        exit 2\r\n    }\r\n    exit 0\r\n}\r\nend {}<\/pre>\n<p>&nbsp;<\/p>\n\n<div class=\"in-context-cta\"><p style=\"text-align: center;\">Acesse mais de 300 scripts no NinjaOne Dojo<\/p>\n<p style=\"text-align: center;\"><a href=\"https:\/\/www.ninjaone.com\/freetrialform\/\">Obter acesso<\/a><\/p>\n<\/div>\n<h2>Detalhamento<\/h2>\n<p>O script \u00e9 estruturado meticulosamente para fornecer uma contagem de discos n\u00e3o criptografados. Veja como ele atinge seu objetivo:<\/p>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559684&quot;:-2,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><strong>Verifica\u00e7\u00e3o da eleva\u00e7\u00e3o:<\/strong> Inicialmente, o script garante que seja executado com privil\u00e9gios de administrador. Isso garante que ele possa acessar as informa\u00e7\u00f5es necess\u00e1rias do disco sem restri\u00e7\u00f5es.<\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559684&quot;:-2,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"2\" data-aria-level=\"1\"><strong>Recupera\u00e7\u00e3o de letras de unidade:<\/strong> O script obt\u00e9m as letras de unidade de todas as unidades n\u00e3o conectadas \u00e0 USB.<\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559684&quot;:-2,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"3\" data-aria-level=\"1\"><strong>Status da criptografia:<\/strong> Dependendo da vers\u00e3o do PowerShell e da disponibilidade de utilit\u00e1rios espec\u00edficos, o script verifica o status da criptografia por meio de <strong>manage-bde.exe<\/strong> ou <strong>Get-BitLockerVolume.<\/strong><\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559684&quot;:-2,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"4\" data-aria-level=\"1\"><strong>Agrupamento e exibi\u00e7\u00e3o de resultados:<\/strong> O script conta o n\u00famero de unidades que est\u00e3o<strong>&#8220;Unlocked<\/strong>&#8221; (<strong>desbloqueadas<\/strong>) e<strong>&#8220;FullyDecrypted<\/strong>&#8221; (<strong>totalmente descriptografadas<\/strong>) e exibe o resultado.<\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559684&quot;:-2,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"5\" data-aria-level=\"1\"><strong>C\u00f3digos de sa\u00edda:<\/strong> Ele oferece c\u00f3digos de sa\u00edda para indicar o resultado. Um c\u00f3digo de sa\u00edda de &#8220;2&#8221; significa mais de um disco n\u00e3o criptografado, enquanto &#8220;0&#8221; indica que est\u00e1 tudo limpo.<\/li>\n<\/ul>\n<h2>Casos de uso em potencial<\/h2>\n<p>Imagine um profissional de TI, Alex, trabalhando em uma empresa de sa\u00fade com centenas de computadores. Cada dispositivo cont\u00e9m dados confidenciais do paciente, o que torna a criptografia crucial. Periodicamente, Alex precisa garantir que as unidades de cada m\u00e1quina sejam criptografadas. Usando esse script, ele pode coletar dados de forma eficiente e, assim, lidar rapidamente com poss\u00edveis vulnerabilidades.<\/p>\n<h2>Compara\u00e7\u00f5es<\/h2>\n<p>Embora existam outros m\u00e9todos, como solu\u00e7\u00f5es de software de terceiros que oferecem monitoramento de criptografia de disco, nosso script se destaca por sua simplicidade e integra\u00e7\u00e3o direta com utilit\u00e1rios nativos do Windows. Enquanto muitas solu\u00e7\u00f5es exigem uma configura\u00e7\u00e3o prolongada ou taxas de licenciamento, esse script do PowerShell \u00e9 leve, econ\u00f4mico e pode ser executado instantaneamente.<\/p>\n<h2>Implica\u00e7\u00f5es<\/h2>\n<p>Embora o script seja uma ferramenta formid\u00e1vel, \u00e9 fundamental compreender seus resultados. Os discos n\u00e3o criptografados em um ambiente corporativo podem levar a <a href=\"https:\/\/www.ninjaone.com\/it-hub\/seguranca-de-endpoints\/what-is-a-data-breach\/\">viola\u00e7\u00f5es de dados<\/a>. Assim, o script n\u00e3o apenas informa, mas \u00e9 um sistema de alerta antecipado.<\/p>\n<h2>Recomenda\u00e7\u00f5es<\/h2>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559684&quot;:-2,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"2\" data-aria-level=\"1\">Sempre execute o script periodicamente, especialmente ap\u00f3s a introdu\u00e7\u00e3o de novas unidades ou sistemas em sua rede.<\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559684&quot;:-2,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"2\" data-aria-level=\"1\">Integre seus resultados a outras ferramentas de monitoramento para obter um painel de seguran\u00e7a abrangente.<\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559684&quot;:-2,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"2\" data-aria-level=\"1\">Considere a automa\u00e7\u00e3o que alerta a equipe de TI imediatamente se uma unidade n\u00e3o criptografada for detectada.<\/li>\n<\/ul>\n<h2>Considera\u00e7\u00f5es finais<\/h2>\n<p>No contexto da criptografia de disco, uma ferramenta que fornece insights como o nosso script do PowerShell \u00e9 inestim\u00e1vel. Para plataformas como a NinjaOne, que se concentra no<a href=\"https:\/\/www.ninjaone.com\/pt-br\/\"> gerenciamento integrado de TI<\/a>, a incorpora\u00e7\u00e3o desses scripts pode oferecer aos usu\u00e1rios uma vis\u00e3o mais hol\u00edstica da seguran\u00e7a de TI. Em uma \u00e9poca em que as viola\u00e7\u00f5es de dados est\u00e3o se tornando mais frequentes, as ferramentas que podem oferecer insights em tempo real sobre vulnerabilidades, como unidades n\u00e3o criptografadas, n\u00e3o s\u00e3o apenas \u00fateis, mas essenciais.<\/p>\n","protected":false},"author":35,"featured_media":143974,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"_relevanssi_hide_post":"","_relevanssi_hide_content":"","_relevanssi_pin_for_all":"","_relevanssi_pin_keywords":"","_relevanssi_unpin_keywords":"","_relevanssi_related_keywords":"","_relevanssi_related_include_ids":"","_relevanssi_related_exclude_ids":"","_relevanssi_related_no_append":"","_relevanssi_related_not_related":"","_relevanssi_related_posts":"","_relevanssi_noindex_reason":"","_lmt_disableupdate":"no","_lmt_disable":""},"operating_system":[4212],"use_cases":[12460],"class_list":["post-809719","script_hub","type-script_hub","status-publish","has-post-thumbnail","hentry","script_hub_category-windows"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.ninjaone.com\/pt-br\/wp-json\/wp\/v2\/script_hub\/809719","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ninjaone.com\/pt-br\/wp-json\/wp\/v2\/script_hub"}],"about":[{"href":"https:\/\/www.ninjaone.com\/pt-br\/wp-json\/wp\/v2\/types\/script_hub"}],"author":[{"embeddable":true,"href":"https:\/\/www.ninjaone.com\/pt-br\/wp-json\/wp\/v2\/users\/35"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ninjaone.com\/pt-br\/wp-json\/wp\/v2\/comments?post=809719"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ninjaone.com\/pt-br\/wp-json\/wp\/v2\/media\/143974"}],"wp:attachment":[{"href":"https:\/\/www.ninjaone.com\/pt-br\/wp-json\/wp\/v2\/media?parent=809719"}],"wp:term":[{"taxonomy":"script_hub_category","embeddable":true,"href":"https:\/\/www.ninjaone.com\/pt-br\/wp-json\/wp\/v2\/operating_system?post=809719"},{"taxonomy":"use_cases","embeddable":true,"href":"https:\/\/www.ninjaone.com\/pt-br\/wp-json\/wp\/v2\/use_cases?post=809719"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}