none
bitlocker reporting from Intune or azure portal o365 RRS feed

  • Question

  • Hi All,

    We have connected all our organization laptops to Azure AD using o365 credentials. Also saved the bit-locker keys to cloud. Is there a way to run a report on which machine / users does not have the bitlocker key saved to cloud? we do follow intune compliance process.

    i heard this is possible with powershell.

    regards

    Chaitanya

    Tuesday, November 19, 2019 1:47 PM

All replies

  • Yes, see the Verifying BitLocker is enabled section at https://blogs.technet.microsoft.com/cbernier/2017/07/11/windows-10-intune-windows-bitlocker-management-yes/

    Jason | https://home.configmgrftw.com | @jasonsandys

    Tuesday, November 19, 2019 4:35 PM
  • You can also monitor device encryption through Microsoft Intune encryption report. The Microsoft Intune encryption report is a centralized location to view details about a device’s encryption status and find options to manage device recovery keys. The recovery key options that are available depend on the type of device you're viewing.

    To find the report, Sign in to the Microsoft Endpoint Manager Admin Center. Select Devices > Monitor, and then under Configuration, select Encryption report.

    Reference: https://docs.microsoft.com/en-us/intune/protect/encryption-monitor

    Best regards,

    Cici Wu


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Wednesday, November 20, 2019 9:04 AM
  • I am just writing to see if this issue has any update. Also, for the problem, is there any other assistance we could provide?

     

    If anything is unclear, please feel free to let me know.

     

    Best regards,

    Cici Wu


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, November 25, 2019 6:41 AM
  • Just provide a brief summary that may easy for end users that visit this thread to understanding.

    Problem/Symptom:

    ===================

    Is there a way to run a report on which machine/users does not have the bitlocker key saved to cloud?

    Solution:

    ===================

    1. See the Verifying BitLocker is enabled section.

    2. Monitor device encryption through Microsoft Intune encryption report. The Microsoft Intune encryption report is a centralized location to view details about a device’s encryption status and find options to manage device recovery keys. The recovery key options that are available depend on the type of device you're viewing.

    Reference

    ===================

    https://blogs.technet.microsoft.com/cbernier/2017/07/11/windows-10-intune-windows-bitlocker-management-yes/

    https://docs.microsoft.com/en-us/intune/protect/encryption-monitor 

    Best regards,

    Cici Wu


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Friday, December 13, 2019 9:13 AM