Forum Discussion
BitLocker Silent Encryption not enabling for standard user
Hello Intune Community, I'm looking for some assistance with our Intune/Autopilot configuration please. For the life of me, I can't get BitLocker Silent Encryption to enable for a standard user d...
To be sure
BitLocker policy configuration:
The following two settings for BitLocker base settings must be configured in the BitLocker policy:
Warning for other disk encryption = Block.
Allow standard users to enable encryption during Azure AD Join = Allow
The last one you mentioned as you were telling : Deployment profile set to Standard User
But to be sure the first one I mentioned is also configured? so we can rule this prereqs out?
BitLocker policy configuration:
The following two settings for BitLocker base settings must be configured in the BitLocker policy:
Warning for other disk encryption = Block.
Allow standard users to enable encryption during Azure AD Join = Allow
The last one you mentioned as you were telling : Deployment profile set to Standard User
But to be sure the first one I mentioned is also configured? so we can rule this prereqs out?
Rudy_Ooms_MVP gerald_doeserich thank you both for you replies.
My config is as follows:
Endpoint Security - Disk Encryption
Assignment: All Devices
Endpoint Security - Baselines - Windows Defender Baseline
Assignment: All Devices
Devices - Configuration Profiles - Endpoint Protection
Assignment: All Devices
Devices - Configuration Profiles - Device Restrictions
Assignment: All Devices
- Something else I thought of, are these hybrid joined or azure ad joined?
- I know it's a mess, but it's the best I've managed to get working after tens of rebuilds of my test laptops...
Is no-one able to offer any assistance? I have now pared back the configuration to just the Endpoint Security - Disk Encryption settings, but still it does not enable for a standard user, only when you subsequently log in as an admin.
- Hi Jonathan,
I also have a multi-user scenario, with users without local admin permissions. I have just compared the Bitlocker settings with mine, and these are identical.
As you’ve already brought the settings down to only Disk Encryption, what you can try is reset or re-image the device and test it again. It wouldn’t surprise me if there are conflicts because of the many configurations you had. Please let me know. I am more than happy to assist you.
