SOLVED

Microsoft Endpoint Manager - Endpoint Protection Policy for Windows 10 devices

%3CLINGO-SUB%20id%3D%22lingo-sub-2089191%22%20slang%3D%22en-US%22%3EMicrosoft%20Endpoint%20Manager%20-%20Endpoint%20Protection%20Policy%20for%20Windows%2010%20devices%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2089191%22%20slang%3D%22en-US%22%3E%3CP%3ETo%20whom%20it%20may%20concern%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHas%20anybody%20found%20a%20way%20to%20get%20this%20policy%20to%20check%20that%20a%20TPM%20exists%20before%20it%20try's%20to%20recommend%20an%20encrypted%20Bitlocker%20system%2C%20or%20have%20I%20made%20a%20boob%20somewhere%2C%20and%20yes%20I%20accept%20the%20fact%20that%20most%20%22modern%22%20systems%20have%20a%20TPM.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%222021-01-23%20(6).png%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F248831iBF3CF78701A2A4B8%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%222021-01-23%20(6).png%22%20alt%3D%22Per%20Setting%20Status%22%20%2F%3E%3CSPAN%20class%3D%22lia-inline-image-caption%22%20onclick%3D%22event.preventDefault()%3B%22%3EPer%20Setting%20Status%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2089191%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMobile%20Device%20Management%20(MDM)%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2090031%22%20slang%3D%22en-US%22%3ERe%3A%20Microsoft%20Endpoint%20Manager%20-%20Endpoint%20Protection%20Policy%20for%20Windows%2010%20devices%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2090031%22%20slang%3D%22en-US%22%3EThe%20policy%20doesn't%20check%20it.%3CBR%20%2F%3EBut%20you%20can%20in%20the%20devices%20%3D%26gt%3B%20monitor%20%3D%26gt%3B%20encryption%20report%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2090926%22%20slang%3D%22en-US%22%3ERe%3A%20Microsoft%20Endpoint%20Manager%20-%20Endpoint%20Protection%20Policy%20for%20Windows%2010%20devices%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2090926%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F186539%22%20target%3D%22_blank%22%3E%40Thijs%20Lecomte%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%20again.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAnother%20report%20to%20add%20to%20the%20ever%20growing%20list.%3C%2FP%3E%3C%2FLINGO-BODY%3E
Contributor

To whom it may concern,

 

Has anybody found a way to get this policy to check that a TPM exists before it try's to recommend an encrypted Bitlocker system, or have I made a boob somewhere, and yes I accept the fact that most "modern" systems have a TPM.

 

Per Setting StatusPer Setting Status

2 Replies
best response confirmed by braedachau (Contributor)
Solution
The policy doesn't check it.
But you can in the devices => monitor => encryption report

@Thijs Lecomte 

 

Thanks again.

 

Another report to add to the ever growing list.