This topic explains how to enable BitLocker on an end user's computer by using MBAM as part of your Windows imaging and deployment process.
This will lead to severe degradation of performance in Configuration Manager primarily in SQL and with Management Points. Known problems include creation of a large amount of policy targeted to all devices which can cause policy storms. Attempting to use the Invoke-MbamClientDeployment.ps1 PowerShell script with Configuration Manager Current Branch 2103 or newer can result in serious problems with the Configuration Manager site. Furthermore, starting with Configuration Manager Current Branch 2103, Configuration Manager BitLocker Management no longer uses the MBAM key recovery services site to escrow keys. This includes escrowing of BitLocker recovery keys during a Configuration Manager task sequence. The Invoke-MbamClientDeployment.ps1 PowerShell script is not supported for use with BitLocker Management in Configuration Manager.
These instructions do not pertain to Configuration Manager BitLocker Management.
0 kommentar(er)
