Hi,

On Windows 8 as well Windows 7, you can enable BDE even when you don't have TPM chip by modifying the Group Policy settings. The difference, on Windows 8, you can use a Password instead. You can do that on a Virtual Machine.

I wonder if I can do this by using MDT 2012 U1. Because I cannot see the Enable BitLocker step when I run my Task Sequence.

Thanks!

You can add a step during your TS

If you go on the TS properties, then you choose Add > Disks > Enable Bitlocker

• Proposed as answer by Juke ChouMicrosoft contingent staff, Moderator Tuesday, April 23, 2013 9:18 AM
• Marked as answer by Juke ChouMicrosoft contingent staff, Moderator Wednesday, May 08, 2013 10:00 AM
• Unmarked as answer by Juke ChouMicrosoft contingent staff, Moderator Wednesday, May 08, 2013 10:01 AM
• Unproposed as answer by Sergio CalderónMVP Wednesday, May 08, 2013 3:12 PM

You can add a step during your TS

If you go on the TS properties, then you choose Add > Disks > Enable Bitlocker

• Proposed as answer by Juke ChouMicrosoft contingent staff, Moderator Tuesday, April 23, 2013 9:18 AM
• Marked as answer by Juke ChouMicrosoft contingent staff, Moderator Wednesday, May 08, 2013 10:00 AM
• Unmarked as answer by Juke ChouMicrosoft contingent staff, Moderator Wednesday, May 08, 2013 10:01 AM
• Unproposed as answer by Sergio CalderónMVP Wednesday, May 08, 2013 3:12 PM

You can add a step during your TS

If you go on the TS properties, then you choose Add > Disks > Enable Bitlocker

Hi,

On Windows 8 as well Windows 7, you can enable BDE even when you don't have TPM chip by modifying the Group Policy settings. The difference, on Windows 8, you can use a Password instead. You can do that on a Virtual Machine.

I wonder if I can do this by using MDT 2012 U1. Because I cannot see the Enable BitLocker step when I run my Task Sequence.

Thanks!

There is a bug in MDT2012 Update 1.
If you deploy Windows 8 Pro Edition, you can use thi Workaround:

Displaying the Bitlocker Wizard Pane with Windows 8 Pro and MDT 2012 Update 1

 Eingefgt aus <http://www.vaughnemiller.com/2013/01/23/displaying-the-bitlocker-wizard-pane-with-windows-8-pro-and-mdt-2012-update-1/>

• Proposed as answer by Andre.ZieglerMicrosoft community contributor Thursday, May 09, 2013 6:14 AM

Hi,

On Windows 8 as well Windows 7, you can enable BDE even when you don't have TPM chip by modifying the Group Policy settings. The difference, on Windows 8, you can use a Password instead. You can do that on a Virtual Machine.

I wonder if I can do this by using MDT 2012 U1. Because I cannot see the Enable BitLocker step when I run my Task Sequence.

Thanks!

There is a bug in MDT2012 Update 1.
If you deploy Windows 8 Pro Edition, you can use thi Workaround:

Displaying the Bitlocker Wizard Pane with Windows 8 Pro and MDT 2012 Update 1

 Eingefgt aus <http://www.vaughnemiller.com/2013/01/23/displaying-the-bitlocker-wizard-pane-with-windows-8-pro-and-mdt-2012-update-1/>

• Proposed as answer by Andre.ZieglerMicrosoft community contributor Thursday, May 09, 2013 6:14 AM

As far as I know, Win8 Enterprise should not need the work around listed above.

Well, I can verify that the Bitlocker wizard pane shows up for me when deploying to a virtual machine.  I'm using Hyper-V if that makes a difference.

I just tried it on VMware Fusion on a Mac and the Bitlocker wizard shows up for me there as well.  Just our of curiosity, what is the use case for encrypting virtual machine hard drives?  It seems much more common for folks to want to exclude Bitlocker

Interesting, it appears that it is an issue with the evaluation media.  I did the following : 

- Downloaded a copy of the Win 8 Enterprise Eval media

- Set up a new MDT 2012u1 deployment share 

- imported the eval media and set up a Standard Client task sequence

- imported Win 8 enterprise media from (downloaded from my Technet subscription) and created a standard client task sequence.

Results were that the task sequence to deploy the Eval media does not display the Bitlocker wizard, while the task sequence to deploy the Technet media DID display the Bitlocker pane.

I'm afraid this doesn't get you any closer to a fix, but at least it validates what you are seeing.

That's right! At least I know I have to use a VL Media to do that.

Thanks for trying out!

I looked at this a little more.  As was the case with Windows 8 Pro not showing the wizard, it has to do with the logic in MDT that determines if it is a "premuim SKU"   

In ZTIUtility.vbs (in the Scripts folder of the deployment share) the is an IsHighEndSKUEx Function starting at line 3837.  

From what I can tell, the SKU identifier for the evaluation of Win 8 Ent is "ENTERPRISE EVALUATION" So adding a case statement testing for that should allow you to have the wizard display for the evaluation media.  Unfortunately I will be away from my test environment for a few days and cannot co

Im having same issue with Windows 7 Enterprise and Windows 8.1 Enterprise

On VM and physcal machines the BitLocker Panel just dont appear.

I have SkipBitLocker=NO in cs.ini

but still is nowhere to be found.

Can some one point me in the right direction, what could be the case ?