They are generating during BitLocker installation. One of these items is the Recovery Keys blade.Is possible to sync recovery key to cloud from SCCM? The hotfix address the issue where using the MBAM Agent to escrow BitLocker recovery keys generates excessive policies in SCCM 2103.The process of moving active devices from MBAM standalone to Configuration Manager can be handled in this manner Remove the existing MBAM group policies from the OU where the machines are located Assign the BitLocker Note: If you forget the password, please click to continue.
Some of us have been using the Invoke-MbamClientDeployment. I tested this on an Azure AD joined device, that was co-managed as described in a previous blog post by myself and Paul here. Simply create a txt file with one PC name on each line and save it. Secure in transit from the endpoint to Configuration Manager and secure at rest in the database. Change the path (Line 2) in the script to your desired location. log to help troubleshoot client communication. Key rotation Key rotation allows admins to use a single-use key for unlocking a BitLocker encrypted device. MEMC BitLocker Management configuration documentation.
Background: We would like to use a Windows 10 task sequence that "disables bitlocker' on current operating system at the beginner, and then runs many steps including installing Windows 10, drivers, install java etc. Sccm bitlocker recovery key click Submit.