@RockmanIT
Hi,
Based on my research, if you don't have something like SCCM\Intune\MBAM also set to encrypt the devices, Group Policy alone isn't able to BitLocker a machine.
Of the available GPO settings, the one that is arguably the most important to configure is Store BitLocker Recovery Information in Active Directory Domain Services.
If the machines start encrypting automatically, that are "Connected Standby" devices will automatically enable BitLocker during setup or OOBE (even if automated), so depending on the machines in question this could be expected behavior.
Hope above information can help you.
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread