Category: Configuration Manager

Important! – MEMCM enabling BitLocker during OSD post 2103

I have always liked Microsoft BitLocker Administration and Monitoring(MABM) as it provides us with additional functionality compared to saving the BitLocker recovery key in Active Directory. MBAM brings us for example:– Protection against accidental deletion of AD computer object (Separate DB)– Key rotation– Self-Service– Role based access to Recovery Keys– Compliance reporting – Escrowing TPM