This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
We have deployed BitLocker using AAD, the new device & existing default is successfully enrolled in BitLocker, and the recovery key is stored in AAD, but some device received our BitLocker policy but we don't see any recovery key on AAD, Need assistance for troubleshooting.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(89.60000000000001, 81%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERA%3C/text%3E%3C/svg%3E)
You may start by checking the Event Viewer and check log files and see if there is any issue there?
How long they connected to the AAD?
Are they enforcing other policies?
Hello there,
What BitLocker group policy settings did you configure for all users?
BitLocker recovery passwords are only saved to AD and AAD at the time they are set (or reset). Thus, you must either rotate them (which can be done using Intune) or send a script to them to force them to save their keys to AAD.
Here is a similar case with marked answers.
Missing Bitlocker Recovery Keys in AAD/InTune https://learn.microsoft.com/en-us/answers/questions/756891/missing-bitlocker-recovery-keys-in-aadintune.html
Bitlocker Recovery Key is not present in AD for some users https://learn.microsoft.com/en-us/answers/questions/410264/bitlocker-recovery-key-not-present-in-ad-for-some.html
----------------------------------------------------------------------------------------------------------------------------------
--If the reply is helpful, please Upvote and Accept it as an answer–