Configure Bitlocker via Endpoint Security

Dear all,

I have a question about automatically quietly configuring Bitlocker on managed devices via Intune Endpoint Security.

In our default configuration, we always configure in Endpoint security policy > Disk encryption:

Require Device Encryption: Enabled

Enforce drive encryption type on operating system drives: Enabled (Full encryption)

This has always worked without any problems so far. In an implementation late last year Bitlocker was not automatically enabled with this policy, despite the policy being successfully deployed. For this I had filed an incident with Microsoft Support. They indicated that there is currently a problem with the Endpoint Security Bitlocker configuration and that for now it should be achieved via a Configuration profile with the Endpoint Protection template.

Now I am working on a new implementation and trying again via Endpoint security however this still does not work.

So I wonder if more people experience problems with this? Or if someone has found a solution?