Device BitLocker Key Rotation Initiation Work Instruction

This work instruction will allow an administrator to remove outdated encryption keys on a registered device through Intune.

This article is intended for employees of organizations that use Sittadel's security. Additionally, there are some actions that can only be accomplished by those with administrative privileges.

Procedure Scope: Administrators

Required Group Membership: Admin.DeviceMDM

  1. Navigate to Devices – Intune, select a device from the list.
  2. From the Overview pane, select the three dots then select the BitLocker Key Rotation option.
  3. A prompt will generate asking if you are sure you want to follow through with doing a key rotation on the device, select Yes to finalize the process.

You're Finished!

You should have successfully initiated a BitLocker Key Rotation; this will clear all old keys associated with a device and reinstate a new single key for encryption use. For any other problems or questions, reach out to us!