Want to learn about MBAM integrated with Microsoft Endpoint Manager Configuration Manager ?

Introduction

Microsoft BitLocker Administration and Monitoring (MBAM) is the ability to have a client agent (the MDOP MBAM agent) on your Windows devices (7,8 10) to enforce BitLocker encryption including algorithm type, and to store the recovery keys in your database, securely. It includes reporting, key rotation and more.

This is something that has been around for quite some years now and is working great, however, MBAM is currently it’s own separate solution. The following blog post from Microsoft details their future direction with regard to BitLocker Management and is  a must read.

https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/Microsoft-expands-BitLocker-management-capabilities-for-the/ba-p/544329

The purpose of this blog post is to gather together previous guides I’ve written since it’s first release in Technical Preview 1905, which help you understand how to get started with MBAM integrated within Configuration Manager, what to expect on the client computers, using help desk functionality, key rotation, self service (for the end user) and finally running reports to get an overview of your compliance.

 

This entry was posted in 1909, Key Rotation, MBAM helpdesk, MBAM Reporting, MBAM SelfService. Bookmark the permalink.