Forum Discussion
Bitlocker encryption issues over Intune
Hi, I have an Hybrid AD deployment and use Intune to deploy security settings to our endpoints. I set up a Device Configuration policy to deploy Bitlocker on all our Windows devices, and this was d...
- A successful compliance of the policy doesn’t necessarily mean that it applied successfully all the way. I would check the device encryption report to identify devices that have not encrypted and start from there. If the report says that devices are encrypted but missing recovery key, then it should easy enough push a script to force the backup of the recovery key to Entra ID.
A successful compliance of the policy doesn’t necessarily mean that it applied successfully all the way. I would check the device encryption report to identify devices that have not encrypted and start from there. If the report says that devices are encrypted but missing recovery key, then it should easy enough push a script to force the backup of the recovery key to Entra ID.
rahuljindal-MVP Thanks, I didn't knew that report yet, and it's much more clear now.
Now I can see that I've got around 90 devices which are encrypted, but I have no keys stored and about 60 devices which are ready for encryption, but most of them have this error:
"The encryption method of the OS volume doesn't match the BitLocker policy. The TPM isn't ready for BitLocker."
Now I'll try to find out how to solve this issues.
