@Ricoli610My tests confirm your remarks:DC: LDAP server signing
requirement: None (default) means ldapserverintegrity registry value
1DC: LDAP server signing requirement: Required means ldapserverintegrity
registry value 2(and not 0 and 1 as expected, which is confusing) This
would mean that the pre...
@Paul Bergson; Great Article, my organization has moved to using InTune
for BitLocker management and reporting, and it works spectacularly well.
However, one thing your article leaves out that we had to learn the hard
way: As a Hybrid-Join tenant, BitLocker will only escrow the BitLocker
key to AD O...
@Alan La Pietra @ChadWst Thank you for all the additional information
and links.Just flagging up that I've tried changing the Domain
controller: LDAP server signing requirements setting in the DDCP from
None to Required and this changed the ldapserverintegrity registry entry
from 1 to 2 (below
HKLM\...