question

PaD-7009 avatar image
0 Votes"
PaD-7009 asked LuDaiMSFT-0289 answered

Intune Bitlocker for USB/external drive (Missing policy for Azure AD Join scenario)

When we enable "Block write access to devices configured in another organization" in Intune Bitlocker policy.
93681-image.png

We also need to deploy an Onprem GPO "Provide unique identifier for your organization". This will allow the PC to differentiate the Org it belongs to.

93573-image.png

"Provide unique identifier for your organization" is missing in Intune. Because of this we cannot use "Block write access to devices configured in another organization" policy.

Looking for suggestions how we implement "Block write access to devices configured in another organization" in Intune for Azure AD Join (not hybrid domain join)?


windows-10-securitymem-intune-generalmem-intune-device-configurations
image.png (75.3 KiB)
image.png (267.8 KiB)
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

LuDaiMSFT-0289 avatar image
0 Votes"
LuDaiMSFT-0289 answered

@PaD-7009 Thanks for posting in our Q&A.

For this issue, currently, there is no method to configure "Provide unique identifier for your organization" via intune. I find someone has the same requirement in intune uservoice. We can vote here. This is a place to collect customers' requirements and problems.
https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/41469799-bitlocker-policy-provide-the-unique-identifiers-f

Given this situation, I just have an idea. Maybe we can write Powershell Scripts to set "Provide unique identifier for your organization" and deploy the Powershell Scripts via intune.

If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.