cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Various Bitlocker policies in Intune

Sebastian Cerazy
Iron Contributor

‎Feb 10 2023 06:29 AM

‎Feb 10 2023 06:29 AM

Various Bitlocker policies in Intune

What is the difference (and the purpose of having two places) between configured BT policy in:

 

Devices | Configuration profiles | Endpoint protection | Configuration settings | Windows Encryption

vs

Endpoint security | Disk encryption

 

The first one is full set of configurable options, while the second one has some subset (not even an option for BitLocker recovery Information stored to Azure Active Directory = Backup recovery passwords only)

With only the Endpoint security | Disk encryption policy applied, I have NO keys in Azure No BitLocker recovery key found for this device

 

Anybody any ideas?

 

Seb

Labels:
1,247 Views
0 Likes
7 Replies
Reply
7 Replies
Rudy_Ooms_MVP

‎Feb 10 2023 09:43 AM

‎Feb 10 2023 09:43 AM

Re: Various Bitlocker policies in Intune

2 questions...

1. I would stick with the endpoint security one..
2. I bet you didn't configured the settings... if you configure the BitLocker - Fixed Drive Settings you could configure the Require device to back up recovery information to Azure AD
0 Likes
Reply
rahuljindal-MVP

‎Feb 10 2023 01:34 PM

‎Feb 10 2023 01:34 PM

Re: Various Bitlocker policies in Intune

@Sebastian Cerazy +1 to @Rudy_Ooms_MVP  comments. Also, you may want to check in the BitLocker event logs on the endpoint to look for clues. 

0 Likes
Reply
Sebastian Cerazy

‎Feb 21 2023 06:32 AM

‎Feb 21 2023 06:32 AM

Re: Various Bitlocker policies in Intune

@Rudy_Ooms_MVP 

 

Why would you assume I did not configure something?

 

SebastianCerazy_0-1676989957469.png

 

0 Likes
Reply
Sebastian Cerazy

‎Feb 21 2023 06:38 AM - edited ‎Feb 21 2023 08:11 AM

‎Feb 21 2023 06:38 AM - edited ‎Feb 21 2023 08:11 AM

Re: Various Bitlocker policies in Intune

@rahuljindal-MVP 

 

Are the logs going to give me an answer to this question?

 

What is the difference (and the purpose of having two places) between configured BT policy in:

 

Devices | Configuration profiles | Endpoint protection | Configuration settings | Windows Encryption

vs

Endpoint security | Disk encryption

0 Likes
Reply
Rudy_Ooms_MVP

‎Feb 21 2023 08:09 AM

‎Feb 21 2023 08:09 AM

Re: Various Bitlocker policies in Intune

Because you didnt showed the settings when first posting the question... I am not good at guessing how each setting could be configured :)
0 Likes
Reply
Sebastian Cerazy

‎Feb 21 2023 08:11 AM

‎Feb 21 2023 08:11 AM

Re: Various Bitlocker policies in Intune

Assume that if somebody serious ask a question, they did check all before (I am not an end user)
0 Likes
Reply
rahuljindal-MVP

‎Feb 21 2023 02:11 PM

‎Feb 21 2023 02:11 PM

Re: Various Bitlocker policies in Intune

Good luck with getting answers then.
0 Likes
Reply