Fix for incorrect B...
Clear all

Fix for incorrect BitLocker encryption errors in Windows 10 and Windows 11

1 Posts
1 Users
0 Reactions
Brandon Lee
Posts: 554
Member Admin
Topic starter

Microsoft has now issued a fix for the incorrect BitLocker encryption errors affecting Windows 11 21H2/22H2, and Windows 10 21H2/22H2:

  1. Issue Description: Microsoft addressed a problem where certain managed Windows environments showed incorrect BitLocker drive encryption errors. This was primarily a reporting issue within the system's interface and did not affect actual drive encryption.

  2. Affected Systems: The bug impacted client platforms including Windows 11 (versions 21H2 and 22H2), Windows 10 (versions 21H2 and 22H2), and Windows 10 Enterprise LTSC 2019. It affected systems where drive encryption policies for operating system and fixed drives were enforced.

  3. Scope of Impact: The issue appeared when using BitLocker configuration settings in MDM (Mobile Device Management) platforms like Microsoft Intune and potentially other third-party MDM solutions. Errors were reported particularly under settings that enforced full encryption or encryption of used space only.

  4. Resolution: Microsoft has issued fixes in recent updates—KB5034204 for Windows 11 and KB5034763 for Windows 10. These updates were released to address the incorrect reporting of drive encryption statuses.

  5. Exclusion from Fixes: Windows 10 Enterprise LTSC 2019, which is under extended support, will not receive this fix as Microsoft deemed the bug non-critical since it does not affect actual encryption or the reporting of other device issues.

  6. Mitigation for Unfixed Systems: For systems not receiving the fix, like Windows 10 Enterprise LTSC 2019, admins are advised to set the affected policies to "not configured" in Microsoft Intune to avoid encountering the error.

Posted : 29/04/2024 11:16 am