Aug 31 2023 02:48 AM - edited Sep 24 2023 03:29 PM
I'm building Windows 10 22H2 Enterprise machines using user-driven Autopilot and AzureAD Hyrid join. We require hybrid join for a very specific reason so AzureAD join is not an option. We also wish to enable Bitlocker with the recovery keys stored in AzureAD.
In this scenario is silent enablement of Bitlocker during Autopilot possible/supported?
Aug 31 2023 05:08 AM
@shocko Please take a look at my blog post for more info to enable your wishes. The BitLocker HAADJ Nightmare (burgerhout.org)
Aug 31 2023 08:19 AM - edited Sep 24 2023 03:30 PM
Thanks for the info. I'm not sure I follow the thread though. We don't use GPO for our Intune enrolled machines. Is it possible to enable Bitlocker silently during user-driven autopilot with the recovery key stored in AzureAD?
Aug 31 2023 10:58 PM
Sep 01 2023 02:01 AM
Sep 07 2023 01:27 AM
@shocko You can enable Bitlocker during Autopilot through a Endpoint Security -> Disk encyption policy.
But I don't know if this works wit HAADJ devices.
Sep 11 2023 07:00 AM
Sep 24 2023 03:32 PM