Support Tip: Steps to Decrypt and Reencrypt a BitLockered Device & Intune


In this post, we're sharing where to find a list of BitLockered devices in the Intune console and pulling together two different ways to decrypt and reencrypt a BitLockered device.

First off, to find which devices are BitLockered in console, just go to Device configuration-Profiles, select your Endpoint protection profile, then in the blade that extends out, select device status and you can see deployment status of the devices. You can read more about configuring Windows 10 endpoint protection in the documentation here: https://docs.microsoft.com/intune/endpoint-protection-windows-10.

Now, for those devices that you are going to decrypt and reencrypt, you'll want to make sure that you or your end user can provide administrative credentials to take the following steps. In addition, the drive must be BitLocker-protected.

Let us know if you have any questions on this Support Tip!

Comments (0)

Skip to main content