We'd love to hear about it! Click here to go to the product suggestion community
I'm running Safeguard 7.0 bitlocker on windows 8.1 x64.
On devices with only legacy bios everything is fine and I'm prompted to start encryption.
But on devices with uefi option it's not working. The OS is installed on mbr not gpt, and i'm not prompted to start encryption.
Is there a setting, not having to install on gpt boot partion.
There should be an error code which is reported to the backend (you should see an event in the MC) which can be checked to verify what the reason for the not starting encryption is.
Without knowing what the error code is, some common reasons for BitLocker not starting are:
Only the following BitLocker group policies (GPOs) should be configured if BitLocker is managed by SGN:
Ensure that no BitLocker group policy settings are configured that interfere with the settings defined in the SafeGuard policies. Otherwise they might be overruled by SafeGuard policies or even lead to conflicts with the SafeGuard BitLocker management.
Example: Activating the group policy setting "Do not enable Bitlocker until recovery information is stored to AD for operating system drives" leads to encryption failing to start if you are using SafeGuard Bitlocker Challenge/Response.
In reply to BigDog88:
Where can I enable "Turn on TPM backup to Active Directory Domain Services"?
In reply to Faisal Raza1:
It's a group policy object - So whoever managed AD in your enterprise should be able to sort it for you.
Some of these GPO's have changed though in the last few years, dependant on what templates you've imported/Server OS.