cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Does a Read Only Domain Controller Work for "Enable BitLocker after recovery information to store"?

John Gruber
Copper Contributor

‎Jun 22 2021 07:14 AM - last edited on ‎Feb 01 2023 10:47 AM by

‎Jun 22 2021 07:14 AM - last edited on ‎Feb 01 2023 10:47 AM by

Does a Read Only Domain Controller Work for "Enable BitLocker after recovery information to store"?

We're deploying Windows 10 encryption using Intune and we have enabled "Enable BitLocker after recovery information to store: By setting this to Yes, BitLocker recovery information will be saved to Active Directory Domain Services".

 

We have some computers that are hybrid Azure AD Joined but are not able to encrypt the drives due to an error in the Bitlocker event logs:

"Failed to backup BitLocker Drive Encryption recovery information to Active Directory Domain Services."

Event ID: 785

 

If we deploy a read-only domain controller where these devices can communicate does that satisfy the requirements?

 

Thanks,

John

Labels:
814 Views
0 Likes
0 Replies
Reply
0 Replies