BitLocker encryption not working on newly created Autopilot device

Question

Hi Modern Devices gang.

I am currently setting up Autopilot and want to enable BitLocker security at the point when the device is built or could do post build.

I have followed the principals outlined in the 4 part series around Bitlocker as well as looking at other articles but just am unable to get my device to enable bitlocker for a start.

The device is co-managed and I have created a policy in Intune.

When the device is built from an Autopilot reset, it doesnt seem to be enforcing bitlocker.

2020 10 05 18 56 33 - How To Manage Devices Community Forum - Welcome to the world of Device Management! This is community build by Device Management Admins for Device Management Admins❤️ Ask your questions!! We are here to help you! - BitLocker encryption not working on newly created Autopilot device

I also get an error in Intune device profile settings targeted for the device.

-2016281112 (Remediation failed)

2020 10 05 19 11 56 - How To Manage Devices Community Forum - Welcome to the world of Device Management! This is community build by Device Management Admins for Device Management Admins❤️ Ask your questions!! We are here to help you! - BitLocker encryption not working on newly created Autopilot device

The error code is 0x87d1fde8

I include a screenshot of the settings defined in Intune. Ideally I want to set 256 encryption with a startup PIN stored in Azure AD.

Should I be attaching this policy through endpoint security now going forward? I hear the older methods will become deprecated in the future.

2020 10 05 19 15 19 - How To Manage Devices Community Forum - Welcome to the world of Device Management! This is community build by Device Management Admins for Device Management Admins❤️ Ask your questions!! We are here to help you! - BitLocker encryption not working on newly created Autopilot device

Many Thanks for members support. 🙂

 

in progress 0
isotonic_uk 2 weeks 1 Answer 29 views Beginner 0

Answer ( 1 )

  1. Endpoint security now going forward… I think this is my assumption also …but I think Endpoint protection is one of the best way to enforce encryption

Leave an answer

Sorry, you do not have a permission to answer to this question .