@Matt Dillon, Thanks for posting in Q&A.
To narrow down this issue, please check the following.
1.Device Prerequisites. A device must meet the following conditions to be eligible for silently enabling BitLocker:
- If end users sign in to the devices as Administrators, the device must run Windows 10 version 1803 or later, or Windows 11.
- If end users sign in to the devices as Standard Users, the device must run Windows 10 version 1809 or later, or Windows 11.
- The device must be Microsoft Entra joined or Microsoft Entra hybrid joined.
- Device must contain at least TPM (Trusted Platform Module) 1.2.
- The BIOS mode must be set to Native UEFI only.
2.Review the logs and check BitLocker prerequisites.
3.Try to delete the HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\FVE key and then sync your device to see if it starts to encrypt.
4.Check the BitLocker policy status in Intune portal and encryption report.
If there is any unclear, feel free to let me know.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.