Hello,
We have started using the Autopilot pre-provisioning(aka white glove), to prepare laptops and install required software ahead of deploying to end users. During this process, our Bitlocker policy is seemingly applied, as the disk is encrypted and recovery information backed up to ADDS. However, despite enabling the "Require device to back up recovery information to Azure AD" option in our (Intune)Bitlocker policy, Bitlocker encryption completes without sending recovery information to AAD.
If I deploy the laptop via Autopilot without pre-provisioning, drive encryption completes and the recovery information is stored in both ADDS and Azure AD.
Autopilot Pre-provisioned machine: Bitlocker encrypts the drive, stores the key in ADDS, but NOT in Azure AD. Bitlocker-API logs reflect event 784 only.
Autopilot normal deployment: Bitlocker...