Microsoft has fastened a recognized difficulty inflicting incorrect BitLocker drive encryption errors in some managed Home windows environments.
The corporate mentioned that Intune is among the many MDM platforms affected by the bug and confirmed that third-party MDM options may additionally be impacted.
Nonetheless, when it acknowledged this in October, it clarified that this was only a reporting downside and the bug doesn’t really influence drive encryption or the reporting of different gadget issues, together with different BitLocker points on enrolled Home windows gadgets.
‘Utilizing the FixedDrivesEncryptionType or SystemDrivesEncryptionType coverage settings within the BitLocker configuration service supplier (CSP) node in cellular gadget administration (MDM) apps would possibly incorrectly present a 65000 error within the ‘Require Machine Encryption’ setting for some gadgets in your surroundings,” the corporate explains on the Home windows Well being dashboard.
“Affected environments are those with the ‘Enforce drive encryption type on operating system drives’ or ‘Enforce drive encryption on fixed drives’ policies set to enabled and selecting either ‘full encryption’ or ‘used space only’.”
The now-fixed bug solely impacts consumer platforms, together with Home windows 11 21H2/22H2/23H2, Home windows 10 21H2/22H2, and Home windows 10 Enterprise LTSC 2019.
Moreover, in keeping with Redmond’s Home windows launch well being web page, it solely impacts programs the place drive encryption is enforced for OS and glued drives.
Microsoft has resolved this bug within the KB5034204 preview replace launched on January 23 for Home windows 11 and the KB5034763 cumulative replace launched on February 13 for Home windows 10.
Nonetheless, the corporate says it won’t repair the bug for Home windows 10 Enterprise LTSC 2019, which is below prolonged assist.
This determination relies on the truth that the bug is restricted to a reporting situation solely, which suggests it doesn’t influence drive encryption or the reporting of different points on the gadget.
Admins can nonetheless mitigate the problem on Home windows 10 Enterprise LTSC 2019 programs by enabling the “not configured” setting for the “Enforce drive encryption on fixed drives” or “Enforce drive encryption type on operating system drives” insurance policies in Microsoft Intune.
