Managing Bitlocker using Microsoft Intune

Deploy and manage BitLocker across your organization using Microsoft Intune, ensuring enhanced data security through encryption and key recovery.

How to Enforce Bitlocker for your whole organisation

To enforce BitLocker using Microsoft Intune, you will need to follow these steps:

  1. Sign in to the Microsoft Endpoint Manager admin center.
  2. Go to Devices > Windows > Windows enrollment > Device compliance policies.
  3. Click the "+ Create policy" button.
  4. In the "Create a device compliance policy" page, give your policy a name and a description.
  5. Under "Settings," select "BitLocker Drive Encryption" from the dropdown menu.
  6. In the "BitLocker Drive Encryption" settings, choose the options you want to enforce. For example, you may want to require that BitLocker be turned on for all drives, and that a recovery key be stored in Azure Active Directory.
  7. Click the "Create" button to save your policy.
  8. Go to Devices > Windows > Windows enrollment > Devices, and select the devices you want to apply the policy to.
  9. In the device details page, click the "Assign" button.
  10. In the "Assign a policy" page, select the policy you just created from the list, and then click the "Assign" button.

Note: You will need to have the appropriate permissions to create and manage compliance policies in Intune. You may also need to ensure that the devices you are enforcing BitLocker on meet the requirements for using BitLocker, such as having a TPM chip and running a supported version of Windows.

How to Enable Bitlocker on a single device

To turn on BitLocker using Microsoft Intune, you will need to follow these steps:

  1. Sign in to the Microsoft Endpoint Manager admin center.
  2. Go to Devices > Windows > Windows enrollment > Devices.
  3. Select the device you want to turn on BitLocker for.
  4. In the device details page, click the Properties button.
  5. In the Properties page, click the Properties tab, and then click the Edit button.
  6. In the Properties page, scroll down to the BitLocker section.
  7. Check the box next to "Turn on BitLocker" and enter a Recovery key to use if the device is lost or stolen.
  8. Click the Save button to apply the changes.

Note: You will need to have the appropriate permissions to manage BitLocker settings in Intune. You may also need to ensure that the device meets the requirements for using BitLocker, such as having a TPM chip and running a supported version of Windows.

Latest Articles

Browse All Articles
Workplace Ninjas - See you there?
Company Updates

Workplace Ninjas - See you there?

We are super excited to sponsor the Workplace Ninjas UK event in Manchester, focusing on Microsoft technologies. We hope to see you there!

Read more
Patch Reporting in Intune: Why It's a Big Deal
Intune Tips

Patch Reporting in Intune: Why It's a Big Deal

Read more
Microsoft Intune: A Game-Changer for Modern IT Management
Intune Tips

Microsoft Intune: A Game-Changer for Modern IT Management

Why IT Pro's and Managers should choose Microsoft Intune as their go-to MDM solution.

Read more
Browse All Articles

Start your 14 day free trial now

Start Trial

Eido is a cloud-based Intune management and monitoring tool, designed to streamline and enhance device management for Enterprises, SMBs, and MSPs.

LinkedIn Icon - Tech & SaaS Webflow Template
Pages
Enterprise FeaturesPartnersPricingContact Us
Resources
BlogIntegrationsFAQFeature RequestLegal
© Eido Software Ltd. All rights reserved
 UK Registered Address: Eido Software Ltd, 71-75 Shelton St, London WC2H 9JQ Registered in England and Wales: Company No. 14027616
Website Terms, Privacy and Cookie Policies