Forum Discussion
Storing bitlocker recovery password in AD/Azure AD for Removable drives
Hello We have applied Bitlocker through Intune for OS, and Fixed drives for enrolled devices. Recovery passwords are saved on Azure AD/AD. We have a requirement to apply the same for Removable ...
Hello ahmnoor395 ,
I assume that you used GPO to configure this setting and then uploaded this GPO to Intune Group Policy analytics.
On the workstation that has this policy applied you can try to find what registry keys were changed by this GPO and then change these registry keys via Intune (for example, with PowerShell).
Hope it helps.
mikhailf we looking to store the recovery key in Azure AD, storing the key in AD means the laptop or desktop should be on premises to start the encryption.
- If you are going to store the key in Azure AD, laptops and desktops should be connected to Azure AD. (Hybrid AD Joined or AD Joined).
devices already hybrid joined, and as I mentioned, OS and Fixed Drive are already encrypted via Intune. What we looking for is to apply the policy for the removable drives through Intune and store the recovery key in Azure AD
