Webb21 okt. 2016 · Put that command in a domain start script - bingo. Of course this would only work if you had the IDs. So better delete the recovery key and recreate it AFTER you push the policy that AD backup is mandatory: manage-bde -protectors -delete c: -type RecoveryPassword. manage-bde -protectors -add -rp WebbIntune doesn't store Bitlocker recovery keys, it just shares what Azure has. I would say this is more of a organization policy problem than a technical Intune/Azure problem. If a device becomes stale, that's another way to say the device is no longer needed and all data on it is void. If it is needed, it probably should be wiped again to be used.
How to store BitLocker keys in Active Directory - CoadyTech
WebbFetch BitLocker Recovery key. The script produces an output that displays the recovery key of the system, fixed and removable drives individually. You can easily copy the … Webb12 apr. 2024 · If your users isn’t running 1809 there is still an option to configure bitLocker silent. With this script, you can enable BitLocker and store the recovery key in AzureAD. It will by default create a recoverykey.txt with recovery key and copy it to the user OneDrive folder. the script is easy to deploy from Intune. how to create email account with domain name
powershell - How to know BackupToAAD ... - Stack Overflow
Webb4 feb. 2015 · Check Property-specific, scroll down and find Write msTPM-OwnerInformation and click Next >. Click Finish. Step 3: Configure group policy to back … Webb28 sep. 2024 · Open the Domain Group Policy Management console ( gpmc.msc ), create a new GPO and link it to an OU with the computers you want to enable automatic … Webb18 maj 2024 · The key is stored in local AD OK from group policy however. I am pretty sure this used to work for Azure but it hasn't for some time. I know I can back it up to AAD … how to create email ad