@WnsNdr after you have applied Intune Bitlocker, your keys will go to AAD or if you stay with AD, go to AD. It is highly possible, that after the change new recovery key will be generated. I highly recommend you uninstall MBAM client from machines and make sure that Intune is the only one which applies Bitlocker policies.
BitLocker Policy from MBAM and Intune
We previously had MBAM managing BitLocker for our machines, recently we migrated BitLocker to Intune. We have shut down the MBAM server for now. Will this cause issue or conflict on the machines ?
-
Pavel yannara Mirochnitchenko 11,711 Reputation points
2022-09-30T05:40:35.843+00:00
2 additional answers
Sort by: Most helpful
-
Lu Dai-MSFT 28,346 Reputation points
2022-09-26T01:13:21.667+00:00 @WnsNdr Thanks for posting in our Q&A.
Based on my understanding, there is no conflict. Before we manage BitLocker Policy using intune, it is needed to enroll the devices to intune. Then we can refer to the following article to deploy BitLocker Policy via intune.
https://learn.microsoft.com/en-us/mem/intune/protect/encrypt-devicesHope it will give you some ideas.
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread. -
WnsNdr 21 Reputation points
2022-09-30T05:00:33.133+00:00 @Lu Dai-MSFT Thanks for the response.
We have further doubts to clarify. Would really appreciate if you can answer them.
In this case does the ComputerObject get two BitLocker key , one from previous MBAM and other from Intune?
Will both be the same ?
If BitLocker Key is not visible in Intune , can BitLocker that is showing up on AD via MBAM be used ?