Enabling BitLocker via Intune

Brass Contributor



I would like to configure policy to enable bitlocker on all company devices. From what I've found, "Endpoint Security -> Disk Encryption" is the way to go with...


Now, I would like to assign it to "all devices", however I am not sure how this will affect devices that already have bitlocker enabled and are enrolled in Intune. Is there anything I should be aware of? Also, would like to enable it "silently"..

2 Replies
If I was you, target it first to a subset of "test" devices.
If those already enrolled devices already have bitlocker turned on... changing an existing bitlocker policy (changing encryption etc) needs to have bitlocker turned off before you apply it again.

So that would give you some reporting errors on the bitlocker policy.
so yeah maybe. a subset of devices could be better