MicrosoftThere are 3 ways you can build encryption policies in Intune
This is the starting point for setting up Bitlocker in Intune and it's inconsistent and confusing. There is little to no guidance on which method is best or what the pros and cons are for each. In testing my team tried to make an encryption policy using each of these methods and they are wildly different experiences from an admin point of view with varying degrees of success based on our requirements.
It would be good to know which method is a best practice to use from the standpoint of someone just starting out with Intune. The example above uses the Endpoint Security blade, which IMO has the best UI and tooltip info of the three options however there seems to be a huge push to put everything into the settings catalog over the past few months. Any thoughts on this?
