Bitlocker Management not showing up on Company Domain Account
My issue: When I log into my Windows 10 Pro laptop with a local administrator account (<laptop_name>\<username>), Bitlocker management is available and active. However, when I log into the same Windows 10 Pro laptop with my company's domain administrator account (<company>.com\<username>), the bitlocker management options are missing from the control panel settings. I want to be able to manage bitlocker while logged in with my company account. More information: When initially enabling bitlocker, I still had this same issue: bitlocker management options were only available on my local windows account, and not my company windows account. So, from my local account, I turned on bitlocker, and, since I had previously logged into my company account, I selected the option to automatically back up my bitlocker keys to that company Azure Active Directory (AD) account. And I have confirmed that when I log into my AD account, I can see my laptop device listed there, and I can view my bitlocker keys for it. So, from my local account bitlocker was successfully enabled, my entire hard drive was encryped, and my bitlocker recovery keys are properly available on my company AD account. Now, when logged into my laptop with my LOCAL account, I can view my bitlocker settings, and it says encryption is enabled and everything is good. HOWEVER, whenlogged into my laptop with my COMPANY account, bitlocker settings are not available from the control panel. They just do not exist at all. 1. Why are the bitlocker settings missing when I am logged into my laptop with my company account? 2. How can I enable bitlocker management when logged into my company account? 3. Since I enabled bitlocker from my local account, is it still encrypting all the data when logged in with my company account? Thank you.Manage Bitlocker Passwor/PIN ?
Hi everyone, I have problem when deploy Bitlocker : How can I manage bitlocker password with normal user , Adminisrator/IT allow them change password/PIN permission , but we might block them "Turn off Bitlocker" ? I used the policy : Disallow standard users from changing the PIN or password Result : - Normal user can't changing Password/PIN . When them click "Change Password ", need to verified by admin - Admin account can change Password . Anyone can help me ? Thank you very much !
Bitlocker keys not visible in Active Directory
Hello, We are enabling Bitlocker in our environment. I had configured all policies related to Bitlocker inside AD. For example, i configured Bitlocker to not start until recovery key backed up to AD. This is the policy about i want to ask something. I want to ask something about this policy because i had an issue with this policy. It seems it not working well or i am missing some point in the configuration. Let me explain what i'm doing after this configuration: - I start Bitlocker encryption, Bitlocker encrypt correctly the Hard Disk. When encrypt finish, I can see the tab on AD called "Bitlocker Recovery", but, at the time I open this tab to request the key stored i get an information message : "There is no elements on this view, To search a recovery key press right button on object domain ... etc ... ". My question is, i know that bitlocker can not start if key is not backed up on AD, so Bitlocker is correctly performed the encryption and the key is backed up on AD. For any reason i can not see the key, even domain admins can not see it. So, how can i see this keys in AD? I need something more, maybe a plugin? a feature? I'm running Windows 10 1809 Professional and Active Directory v 10.0.171321. Any help is really welcome. Thanks in advance. Rgards.
