using BitLocker Management in ConfigMgr and do OSD, read this !

Introduction

I like many others have blogged about enabling BitLocker during a task sequence in the past, however recently it’s come to my attention that the Invoke-MBAMClientDeployment.ps1 scripts which were provided for MBAM setups are not supported for use with the BitLocker Management feature in ConfigMgr, especially if you use version 2103.

Update: A hotfix was released to address this, please scroll to the end to read about it.

So today, I tweeted the following:

The moral of the story, if you use BitLocker Management feature withint Configuration Manager, don’t use the MBAM invoke scripts, or you’ll be in a world of pain.

Additional reading

https://docs.microsoft.com/en-us/microsoft-desktop-optimization-pack/mbam-v25/how-to-enable-bitlocker-by-using-mbam-as-part-of-a-windows-deploymentmbam-25

Hotfix available for ConfigMgr version 2103 to solve policy storm issues caused by Invoke-MbamClientDeployment.ps1

This entry was posted in 2103, Bitlocker, BitLocker, policy storm. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.