Event banner

AMA: Intune device inventory and analytics

Event Ended
Tuesday, Oct 01, 2024, 07:30 AM PDT
Online

Event details

The future of IT management is built on data and having visibility across endpoints. With the upcoming release of Device Inventory in Microsoft Intune at the end of the month, what device data will y...
Heather_Poulsen
Updated May 14, 2025
AMA
Tech Community Live
floresbe's avatar
floresbe
Copper Contributor
Oct 01, 2024
How does BitLocker key data compare to Active Directory BitLocker keys? I’ve observed that for many devices, the BitLocker keys stored in Active Directory don’t always match those managed by Intune.
  • Jason_Sandys's avatar
    Jason_Sandys
    Icon for Microsoft rankMicrosoft
    Oct 01, 2024
    BitLocker Recovery Key storage is the responsibility of each individual device and is triggered *only* at the time that an RK is set (or reset). ON hybrid joined devices, devices attempt to save the key to both locations but only one is required to be deemed a successful key save. Depending on connectivity and various other factors that the device cannot and does not control, the RK may thus only be saved to one of the locations. One recommended path to help here is to choose a single authoritative location (hint: this should be Entra ID) and use a remediation script to force all managed Windows devices to periodically save their keys to Entra ID. (Also note that BitLocker RKs are stored in Entra ID and not Intune.)
Date and Time
Oct 1, 20247:30 AM - 8:30 AM PDT