Forum Discussion
BitLocker Silent Encryption not enabling for standard user
Hello Intune Community, I'm looking for some assistance with our Intune/Autopilot configuration please. For the life of me, I can't get BitLocker Silent Encryption to enable for a standard user d...
To be sure
BitLocker policy configuration:
The following two settings for BitLocker base settings must be configured in the BitLocker policy:
Warning for other disk encryption = Block.
Allow standard users to enable encryption during Azure AD Join = Allow
The last one you mentioned as you were telling : Deployment profile set to Standard User
But to be sure the first one I mentioned is also configured? so we can rule this prereqs out?
BitLocker policy configuration:
The following two settings for BitLocker base settings must be configured in the BitLocker policy:
Warning for other disk encryption = Block.
Allow standard users to enable encryption during Azure AD Join = Allow
The last one you mentioned as you were telling : Deployment profile set to Standard User
But to be sure the first one I mentioned is also configured? so we can rule this prereqs out?
Rudy_Ooms_MVP gerald_doeserich thank you both for you replies.
My config is as follows:
Endpoint Security - Disk Encryption
Assignment: All Devices
Endpoint Security - Baselines - Windows Defender Baseline
Assignment: All Devices
Devices - Configuration Profiles - Endpoint Protection
Assignment: All Devices
Devices - Configuration Profiles - Device Restrictions
Assignment: All Devices
- Something else I thought of, are these hybrid joined or azure ad joined?
- I know it's a mess, but it's the best I've managed to get working after tens of rebuilds of my test laptops...
Is no-one able to offer any assistance? I have now pared back the configuration to just the Endpoint Security - Disk Encryption settings, but still it does not enable for a standard user, only when you subsequently log in as an admin.
