Running OS X Lion with FileVault, and Windows 7 with BitLocker

By Chugworth
in Apple (macOS)

 Share

Recommended Posts

Mentor

Chugworth

Posted
Posted

Goal: On my MacBook Pro 13 (mid-2010), I want to run both OS X Lion with FileVault protection, and Windows 7 64-bit (Boot Camp) with BitLocker protection.

Dilemma: Limit of four primary partitions.

Story: I have this 13-inch MacBook Pro (mid-2010) which I rarely used. Several months ago I upgraded its hard drive to a Seagate Momentus XT 500GB, and just recently I loaded Windows 7 through Boot Camp. I was impressed with how well Windows 7 ran on the system, and I was even playing fairly recent games at high graphics quality. I decided that I wanted to secure the hard drive data in case I bring the laptop with me when I go on trips. "No problem", I thought. Both Windows 7 and OS X Lion have drive encryption features. I first attempted to enable BitLocker in Windows, and realized that the MacBook didn't have a TPM chip. No big deal though - I'll just enable BitLocker and use a USB drive for authentication. The next issue I ran into was that BitLocker required a separate boot partition, and with a Boot Camp install, Windows loads everything in one partition.

OS X Lion uses three partitions - an EFI partition, the OS X partition, and a recovery partition. "Hmm, I don't really need that recovery partition", I thought. So I removed the recovery partition, enabled BitLocker, and all was well on the Windows side. I was impressed that I didn't really notice any speed difference with BitLocker enabled.

Next step: Enable FileVault. Only problem: Apparently FileVault requires that OS X recovery partition. So now I have a dilemma. I can only encrypt one OS or the other since OS X uses three partitions if you use FileVault, and Windows 7 uses two partitions if you use BitLocker.

Theoretical workarounds: I wonder if I could somehow get Windows 7's two partitions inside of an extended partition. Windows 7 doesn't allow you to install it like this since a logical partition can't be marked as active. But perhaps I could image them into logical partitions, and maybe it could still boot since it's being selected from the OS X boot menu.

Another idea is to have the Windows 7 boot partition on a USB drive (since I need the USB drive for BitLocker anyways). But this does not look promising since I have a USB drive with WinPE on it, and it does not show up in the Apple boot menu.

Any suggestions on this would be appreciated. I know some might suggest using virtualization for Windows, but that's not a good solution if you intend to do some gaming in Windows. Some might suggest using TrueCrypt for the Windows partition. I tried that, but it apparently doesn't work with Boot Camp.

Mentor

Chugworth

Posted
  • Author
Posted

Doesn't Mac's come with the gpt partition table? You can just set the two windoze partitions as "mbr" primary partitions and the OSX ones (including the EFI partition) as gpt primary ones.

The problem here is that when you boot up through Boot Camp, the OS sees the drive as having an MBR partition table. So to Windows, the OS X partitions count as the first three, and you are left with one available.

It's starting to look like this project may be a failure. I tried gathering an image of the Windows boot partition, then recreating it as a logical partition. But that would not show up on the Apple boot menu.

  • 1 year later...
Neowinian

mfisch

Posted
Posted

Doesn't Mac's come with the gpt partition table? You can just set the two windoze partitions as "mbr" primary partitions and the OSX ones (including the EFI partition) as gpt primary ones.

 

http://tumblr.tguum.kr/post/9709394290/enabling-bitlocker-with-osx-lions-filevault-activated

^^ the English is rough, and it is presented in a difficult way to understand besides.

 

It appears possibly this guy is manually editing the Hybrid MBR to effect the suggested fix (using GPT for Mac OS Filevault/boot and MBR for Windows Bitlocker/boot).

 

Can anyone read that post?

 

-Matt

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • Microsoft finally launches WSL Containers in public preview

      By Legend20 · Posted

      Slick!
    • Dbrand thought they could get away with this Steam Machine case, Valve disagreed

      By Rosyna · Posted

      Yes, it was amusing at the time because even then dbrand was well known for stealing the designs of products from other companies. That’s what they do.
    • Dbrand thought they could get away with this Steam Machine case, Valve disagreed

      By ZipZapRap · Posted

      Didn’t Dbrand once complain that Casetify was ripping off their designs a well? seems pretty bad of them to try and get around Valve’s copyright this way with that in mind.
    • Dbrand thought they could get away with this Steam Machine case, Valve disagreed

      By David Uzondu · Posted

      Dbrand thought they could get away with this Steam Machine case, Valve disagreed by David Uzondu Image via Dbrand Dbrand has cancelled its highly anticipated Companion Cube enclosure for the Valve Steam Machine, which it teased back in November of last year with a concept render and sign-up page, because it did not ask Valve for permission first before manufacturing the case. According to Dbrand, it took the "backwards approach" of building the product first before asking for permission from the copyright holder. Seven months of work went into the project, requiring over a thousand engineering hours from the design team. Workers developed forty-four sets of injection molding tools, making a unique mold for each sub-component of the crate. When the Companion Cube went live on Monday last week, it, according to Dbrand, quickly became the second-fastest-selling product in the company's fifteen-year history, racking up orders for hundreds of thousands of units. Customers eagerly bought the $129.95 deluxe edition or the bare-bones $99.95 version, which the manufacturer cheekily branded as the "Poverty Cube". It was around this time that the legal eagles at Valve descended on the accessory maker with a formal demand. The developer pointed out that the iconic block design remains protected intellectual property from the game Portal, so unlicensed sales had to stop. Dbrand said that all its pleas to salvage the project with the Valve team, including proposals to run a properly licensed release under official terms "with their blessing", fell on deaf ears, so it had no choice but to obey and remove every trace of the product from the internet. If you bought the enclosure, the company said that banks will process your refund by the end of this week, but if it still hasn't arrived in your account by then, you should not hesitate to contact support. The Steam Machine itself is a high-performance console that Valve designed directly to bring PC gaming into the living room. It was announced on 12th November 2025 (the same day Dbrand announced the Cube) and runs on the Linux-based SteamOS, the same OS that powers the Steam Deck. As for the price, due to the shortage of memory and storage chips, the hardware cost landed much higher than people were expecting, starting at $1,049 for the 512 model (without a controller) or $1,128 with the new gamepad. The premium 2 TB model pushes those prices even higher, selling at $1,349 for the standalone console and hitting $1,428 if you want the bundle.
    • Politically funny images of the World

      By +Edouard · Posted

  • Recent Achievements

    • Rookie
      Almohandis went up a rank
      Rookie
    • Apprentice
      jahara21 went up a rank
      Apprentice
    • Reacting Well
      NovaEdgeX earned a badge
      Reacting Well
    • Week One Done
      NovaEdgeX earned a badge
      Week One Done
    • One Year In
      BA the Curmudgeon earned a badge
      One Year In

  • Popular Contributors

    1. 1
      +primortal
      534
    2. 2
      +Edouard
      266
    3. 3
      PsYcHoKiLLa
      148
    4. 4
      Steven P.
      97
    5. 5
      macoman
      57
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!