I have a question about the Bit Locker Group Policy. I have setup the GPO and tied it to an OU in our domain with all settings I want applied. From my understanding Bit Locker will not enable by itself just by configuring the GPO but instead just define the settings I want to apply in the policy. I would have to either enable it manually or by some type of script. But what I am noticing is that I have computers that are automatically enabling Bit Locker. Is this supposed to happen? Has anybody else had this happen. Its good in the fact that I dont have to touch all the computers but bad if it enables it and they have USB drives attached at the time it is enabled which would cause BL recovery mode to come up. Any insight is welcome.