Forum Discussion
HAADJ with Intune Co-Management
Hello, -I have HAADJ tenant with Intune Co-Management. -AD connect syncs devices only and not users to Entra (as users are third party provisioned and federated). -Devices appear in Azure th...
I'll try to answer your questions -
Q1 - The recovery key is not presented after each reboot. It will only be presented when there is change in HW or tampering with the TPM and\or settings.
Q2 - Is the recovery key not present or not visible? Do you have the BitLocker policies applied from Intune? Also, the recovery key is escrowed in Entra ID and not in Intune. The recovery key in Intune is pulled from Entra ID.
Q3 - Owner information in Entra ID should update and match the primary user in Intune. Have you tried asking the licensed Intune user to sign into the Company Portal app?
Q1 - The recovery key is not presented after each reboot. It will only be presented when there is change in HW or tampering with the TPM and\or settings.
Q2 - Is the recovery key not present or not visible? Do you have the BitLocker policies applied from Intune? Also, the recovery key is escrowed in Entra ID and not in Intune. The recovery key in Intune is pulled from Entra ID.
Q3 - Owner information in Entra ID should update and match the primary user in Intune. Have you tried asking the licensed Intune user to sign into the Company Portal app?
Q1 - This happens only during the restart required in removing symantec drive encryption, After that does not occur, I suspect its because it does not recognize it as removed fully yet until the second restart.
Q2- Bitlocker policies is applied via Intune(Co-managed Hybrid Entra ID and enrollment done via device credential not user credential since upn mismatch is not possible) however we can see recovery key in Intune and company portal but not in user accounts.
Q3- Intune license user is usually logged in already to office/company portal(uses same credentials for Office 365) when this occurs.