Deploy BitLocker silently to Windows 11 using Intune.

preview_player
Показать описание
In this video, Andy configures an Endpoint security policy for BitLocker Encryption and deploys this to a new Windows 11 device using Autopilot. The device is a Virtual machine running on Hyper-V.

The way to deploy is exactly the same as the approach for Windows 10. Andy steps through the settings to configure and highlights some of the considerations.

#Windows11 #BitLocker #WindowsEncryption #Intune

  1. CloudManagement.Community
  2. Windows
  3. microsoft windows 11
  4. windows 11
  5. windows 11 download
  6. windows 11 features
Рекомендации по теме
Deploy BitLocker silently 0:18:18

Deploy BitLocker silently to Windows 11 using Intune.

How to configure 0:07:36

How to configure Bitlocker Configuration Microsoft Endpoint Manager Intune

Silent BitLocker Encryption 0:07:32

Silent BitLocker Encryption Policy Intune, Windows 10 & 11; OS & Fixed Drives | Standard, Ad...

Mastering BitLocker: Step-by-Step 0:10:30

Mastering BitLocker: Step-by-Step Guide to Creating and Managing Configuration Profiles in Intune

Using Intune to 0:04:43

Using Intune to Configure BitLocker | How to Configure BitLocker Using Intune

Microsoft Intune - 0:01:35

Microsoft Intune - How to enable bitlocker via intune for a windows device

BitLocker Silent Encryption 0:02:08

BitLocker Silent Encryption with SureMDM Run Scripts

Microsoft Intune part7 0:09:37

Microsoft Intune part7 | Manage BitLocker policy

Automatically BitLocker OS 0:15:00

Automatically BitLocker OS Drive using GPO

Bitlocker Encryption using 0:01:10

Bitlocker Encryption using Intune | BitLocker policy for Windows devices with Intune

52. Enabling BitLocker 0:21:09

52. Enabling BitLocker on Windows Device without TPM with Intune

21. Configure Active 0:17:09

21. Configure Active Directory to Store BitLocker Recovery Keys

Understand and Deploy 0:16:31

Understand and Deploy BitLocker

Add PIN to 0:08:08

Add PIN to BitLocker Encrypted Windows 11 Drive

Microsoft Intune Manager: 0:10:04

Microsoft Intune Manager: Aufbau einer Intune Infrastruktur - Folge 38 - BitLocker-Richtlinie

Windows Intune - 0:01:35

Windows Intune - How to configure bit locker via intune

BitLocker mit Intune 0:04:07

BitLocker mit Intune für Hybrid-Geräte aktivieren - Intune Windows Basics 09

53. BitLocker Key 0:12:06

53. BitLocker Key Rotation with Intune Managed Devices | Microsoft Intune

BitLocker mit Intune 0:08:45

BitLocker mit Intune aktivieren - Intune Windows Basics 07

What is BitLocker 0:02:19

What is BitLocker and BitLocker recovery?

Troubleshooting Bitlocker Encryption 0:07:10

Troubleshooting Bitlocker Encryption with Intune

How to enable 0:04:30

How to enable BitLocker without a Trusted Platform Module (TPM) - Windows 11 | Windows 10

Windows 2019 Virtual 0:30:39

Windows 2019 Virtual LAB 2021 - Installing ZERO TOUCH BITLOCKER (TPM) with downloadable Scripts

S01E04 Configuring 0:31:52

S01E04 Configuring and Deploying BitLocker Client Policies from Intune

Комментарии
Автор

Well thoroughly explained. Cheers mate.

prajwalaryal
Автор

Hi all,

There are two options available to encrypt drives:
Option 01. under Endpoint Security > Disk Encryption and

Option 02. through device configuration profiles.

The requirements include saving the key to Azure AD and AD, with the need for silent encryption without a user interface.

My question is,

Q1. for SILENT BITLOCKER ENCRYPTION, which method should we choose, Option 01 or Option 02?

Q2. If we create a profile only under Endpoint Security > Disk Encryption, will the encryption work?

Q3. Or do we need to define BitLocker configuration in Endpoint Security, and use the same settings in the profile under device configuration?

Q4. And same group assignment for profile created in option 1 and option 2.?

sanjeev.bhardwaj
Автор

I am a bit confused here, it seems you can also encrypt your devices with bitlocker using a configuration profile > Endpoint Security > Windows encryption

Do different situations require different approaches?

JessieS
Автор

Hi I hope you can help me with this, for days I have been trying to get Windows 11 pro to silent encrypt itself via intune device configuration policies, and all I have been getting is the following in the log: "BitLocker CSP: indicates OSV is not compliant with returned status 0x2".

When I configure the device to be encrypted, it prompts me. But when I configure "Hide prompt about third party encryption and "allow standard users to enable encryption during autopilot", seems like it breaks everything.

Any suggestions?

I knew that there's a difference between Windows Pro and Enterprise when writing keys back into Active Directory around Windows 7/8/8.1 era

and, does this encryption only work during OOBE or also post log on, for lets say devices that are already deployed..

Loewie
Автор

After I setup Disc Encryption policy and its pushed out to all devices, will it automatically enable on all new devices added later?

foch
Автор

Whats the difference between this and endpoint security > Disk Encryption?

MuslimWojak
Автор

I don't know why I could not follow your movements when you explain. you give good knowledge but not clearto me how you getto this or that point. some how faster than it should be. but thankx for the effort appriciate your time :)

beikselect