SCCM Bitlocker - key escrow problem

Eduards 771 Reputation points
2022-02-01T12:53:01.713+00:00

Hello, recently we updates SCCM to 2107 and installed latest hotfix.

After SCCM TS completes successfully on laptop that has TPM it's receives bitlocker policy. Bitlocker is enabled during TS and everything is compliant except, bitlockey key could't be escrowed to SCCM MP.
170233-image.png

SCCM TS image is 21H2 and, how i now we don't have this problem with 1909 enterprise.

Also there is this message :
170215-image.png

Screenshots are from workstation BitlockerManagementHandler.log. All polices is compliant and there are no error logs in MBAM operation/admin secition.

What could be the cause of it?

Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,745 questions
Microsoft Configuration Manager
{count} votes

2 answers

Sort by: Most helpful
  1. Rahul Jindal [MVP] 9,126 Reputation points MVP
    2022-02-01T22:30:27.15+00:00

    Where and how are your Bitlocker policies setup?


  2. Limitless Technology 39,331 Reputation points
    2022-02-02T10:55:21.617+00:00

    Hello Eduards

    I will recommend to check the port UDP 1434 or open the client firewall. Other times, it will take some hours to enroll completely, I would suggest checking after 24hr.


    --If the reply is helpful, please Upvote and Accept as answer--