This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 86%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Hello, devices in the organization are encrypted with BitLocker. However, in Entra I do not see the recovery key for all machines.
I could give users instructions on how to make a backup in Azure. However, they are not administrators and cannot perform such actions, including retrieving the key.
I haven't found a way to delegate control to BitLocker. There is an option that allows you to interact with the user during encryption, but I am not sure that it allows you to make a copy of the key.
Perhaps someone knows how to save current keys in Azure? A PowerShell script is welcome, or rather, perhaps someone knows a command that initiates a backup copy of a key? I'll write the script myself :)
Thank you.
Maybe this can help - https://rahuljindalmyit.blogspot.com/2021/06/how-to-force-escrowing-of-bitlocker.html
With the May (2405) service release of Microsoft Intune, users can access their BitLocker recovery keys via the Intune Company Portal website. More info here
I hope this helps!
Remember to accept the answer if it is helpful.