Tuesday, December 04, 2012 4:07 PM
I have a problem with MBAM 2012. The client is contacting the server and encrypting. They show in the enterprise compliance report, but not under the hardware tab. Am I missing something obvious?
Tuesday, December 04, 2012 8:21 PM
Wednesday, December 05, 2012 9:12 AM
I have set, client MGT - Configure MBAM Services, and specified the endpoints, which do resolve the services.
Disabled hardware compatibility checking
Operating System Driver - Operating system drive encryption settings - TPM only, no PIN.
I can't see a policy for logging and approving?
Wednesday, December 12, 2012 9:19 AM
Please try the following action plans:
1. Disable the following GPO：
Removable data drives—Deny write access to removable data drives not protected by BitLocker—Disable
2. Insert the USB flash drive and note the drive letter assigned to it.
Although a BitLocker PIN can contain spaces, it is easier to avoid spaces when setting the PIN via the command line. Replace E with the drive letter assigned to the USB flash drive. C is the drive
to be encrypted. E is the location to save the StartupKey.
manage-bde -protectors -add C: -TPM –tp xxxx -tsk E:
Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
Wednesday, December 12, 2012 9:29 AM
Im not sure i understand the point in putting the key on a USB drive? It needs to populate in MBAM hardware tab?
Thursday, December 13, 2012 4:05 AM
which version of MBAM software have you installed?
check from programs and features.
for MBAM 1.0 - enable allow hardware compatibility checking policy under client management for MDOP MBAM GPOs.
for MBAM 2.0 Beta - this feature is deprecated in standalone version.
- Marked As Answer by Ian.Southwell Thursday, December 13, 2012 12:42 PM
Thursday, December 13, 2012 9:34 AM
We are running MBAM from MDOP 2012, version 1.0.2001.1
I had enable hardware compatibility checking disabled. As i am still testing i will try it enabled and see how our test clients react.
Thanks for you help.
Thursday, December 13, 2012 12:42 PM
That works properly, thanks for your help. It is pretty useless for us anyway as we only have one manufacturer of laptop, so i'll leave it disabled.