A latest Microsoft Support knowledgebase article and servicing stack replace for Home windows working techniques gives a repair for a race situation problem launched by a safe boot function replace, which prompted patching to set off a BitLocker restoration password. It jogged my memory that we frequently overlook which units have BitLocker. Once you patch, BitLocker is often silent and doesn’t intrude within the patching course of. BitLocker is designed to be silent, a lot so that you just may overlook which machines have it enabled and which of them don’t.
Microsoft not too long ago introduced that it’ll add superior administration instruments to trace and handle BitLocker within the coming months to SCCM and Intune. Within the meantime, what are you able to do to stock your community to find out which units have BitLocker? A lot.
Utilizing PowerShell to search out BitLocker-enabled units
Let’s begin off with PowerShell. The manage-bde -status c: command signifies whether or not BitLocker is enabled on the gadget.
