Updates are available for a variety of Windows releases starting in 2021.
Microsoft has updated its operating systems to address a bug related to incorrect BitLocker disk encryption messages in some Windows-based managed environments. The problem affected MDM platforms such as Intune, and could also affect third-party MDM solutions.
The error occurred as follows: when using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings, the BitLocker configuration service could display errors 65000 in the device encryption settings. According to the company, the problem only affected reports and did not affect real disk encryption or other problems with devices, but such errors caused concern among administrators.
The problem affected client platforms, including Windows 11 21H2/22H2/23H2, Windows 10 21H2/22H2, and Windows 10 Enterprise LTSC 2019, and occurred only on systems where mandatory encryption of operating systems and fixed disks was activated.
Microsoft has released patches as part of the KB5034204 preview update, released on January 23 for Windows 11, and the cumulative KB5034763 update, released on February 13 for Windows 10. However, the fix was not released for Windows 10 Enterprise LTSC 2019, because this version is in "advanced mode" of support, and the error itself only concerns reporting scenarios, and not real encryption.
Administrators can manually mitigate the impact of this error on Windows 10 Enterprise LTSC 2019 systems by activating the "not configured" setting for the "Enforce drive encryption on fixed drives" or "Enforce drive encryption type on operating system drives" policies in Microsoft Intune.
Microsoft has updated its operating systems to address a bug related to incorrect BitLocker disk encryption messages in some Windows-based managed environments. The problem affected MDM platforms such as Intune, and could also affect third-party MDM solutions.
The error occurred as follows: when using the FixedDrivesEncryptionType or SystemDrivesEncryptionType policy settings, the BitLocker configuration service could display errors 65000 in the device encryption settings. According to the company, the problem only affected reports and did not affect real disk encryption or other problems with devices, but such errors caused concern among administrators.
The problem affected client platforms, including Windows 11 21H2/22H2/23H2, Windows 10 21H2/22H2, and Windows 10 Enterprise LTSC 2019, and occurred only on systems where mandatory encryption of operating systems and fixed disks was activated.
Microsoft has released patches as part of the KB5034204 preview update, released on January 23 for Windows 11, and the cumulative KB5034763 update, released on February 13 for Windows 10. However, the fix was not released for Windows 10 Enterprise LTSC 2019, because this version is in "advanced mode" of support, and the error itself only concerns reporting scenarios, and not real encryption.
Administrators can manually mitigate the impact of this error on Windows 10 Enterprise LTSC 2019 systems by activating the "not configured" setting for the "Enforce drive encryption on fixed drives" or "Enforce drive encryption type on operating system drives" policies in Microsoft Intune.
