Bitlocker Migration from On-prem to Intune
Need suggestion what are the possible ways to shift the Bitlocker key from an On-prem environment to Azure AD. After migrating the co-managed machines to Intune.
What approach do you suggest?
- Take a backup of Bitlocker keys to Azure AD
- Decrypt and then encrypt the device using Intune (It is going to be time taking and may affect the computer if process get disrupted in between )
- Bitlocker key rotation – (I am still reading about it, but not sure how it works)