MEMCM Management of Bitlocker with Co-Management enabled

John Biggston 71 Reputation points
2022-06-27T15:24:58.577+00:00

Good morning,
I am piloting MEMCM\Intune co-management for a group of hybrid-joined devices. We are also in the middle of migrating our MBAM management of some of these devices from a standalone infrastructure to MEMCM-integrated. For any machine that isn't in the Pilot group, the migration goes fine, I see the machine show up in the DB and it shows compliance status properly in the MEMCM reports. For any machine that is in the Pilot group, the Compliance Status Details show as "Policy is not enforced" If I look at the BitlockerManagementHandler.log on those clients, I see multiple entries of this type:

Security workload is not SCCM managed; ignoring policy.

We do have an Endpoint Management\Disk Encryption Policy configured, but I have removed the deployment to those machines, and yet the MEMCM Bitlocker policy will still not enforce.

Is MEMCM-integrated Bitlocker management supported for Co-managed devices and if so is there a specific workload that must not be Pilot-Intune assigned in order for the MEMCM policies to take effect?

Any help is welcome.

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,211 questions
Microsoft Configuration Manager
{count} votes

3 answers

Sort by: Most helpful
  1. Rahul Jindal [MVP] 9,126 Reputation points MVP
    2022-06-27T20:24:32.913+00:00

    If you have moved the Endpoint Protection work load to Intune, then this will move BitLocker and Defender to Intune as well.

    0 comments No comments

  2. John Biggston 71 Reputation points
    2022-07-11T14:32:21.443+00:00

    So MEMCM-integrated MBAM and Intune are incompatible? We're likely going to be staying with a hybrid Intune\MEMCM environment and would prefer to have Bitlocker managed by MEMCM, is there no way to specifically exclude Bitlocker from the Endpoint workload?

    0 comments No comments

  3. Paul Winstanley 96 Reputation points
    2022-07-12T22:41:07.103+00:00

    No this is not possible.

    0 comments No comments