Is this currently possible between a mix of Endpoint Protection Configuration Profiles, Device Restriction Configuration Profiles and Defender ATP (Admin Templates etc. While BitLocker makes it easy to protect data with strong encryption, it has its own quirks too.
Bitlocker on the go windows 10 windows 10#
Granular a request on Windows 10 without 3rd party tooling? Barco ClickShare device) - could we suppress the the BitLocker prompt to encrypt and just automatically allow read-only. AND bypass the current removable data-drive (USB) BitLocker policy that encrypts everything, if write access is allowed?Īlso, we have a similar scenario to the above but with a device that purely requires read-only access (e.g. USB storage device to connect and access the storage via the DeviceID whitelisting etc.
Now, if we have for example, a 3rd party USB storage device that has it's own native encryption and doesn't require BitLocker, would it be possible to set up a Device Restriction Configuration Profile that blocks all USB storage devices but allows this specific All working well and when a USB device is attached, the identity using the device is prompted toĮither read or write to the device (write forces BitLocker encryption). We've set up the policy within Intune via an Endpoint Protection Configuration Profile to handle the encryption for OS drives and removable data-drive etc. Windows 10 Enteprise device using build 2004 and an E5 license. achieve the below on a Windows 10 device natively via Intune). I've got a question that would be great if someone can answer if this is possible or not (without 3rd party solutions e.g. I recently posted this question within the Intune forum but have been asked to additionally post here.
0 kommentar(er)
