Disk Encryption is a requirement for all University of Leeds mobile devices.
Current versions of Windows enable disk encryption by default, but may not be enabled on some devices due to hardware configuration, or if upgraded from previous versions of Windows. If the disk is not encrypted, Intune Endpoint Management will request that you enable it upon enrolment.
If you receive the following notification after enrolling a device into Intune, please follow the steps below.
IMPORTANT STEPS BEFORE PROCEEDING:
Double Click the Notification and follow the prompts.
Check the box for "I don't have any other disk encryption software installed", encrypt all my disks.
The following dialogue box will offer the following options. If you have other disk encryption software installed such as Sophos Safeguard, click No and contact IT for further support.
If you are sure there is no other encryption software installed, check the "I don't have any other disk encryption software installed, encrypt all my disks" box and click "Yes" to continue.
You will then be prompted to restart the computer. If you have any external media attached, such as USB drives or CD/DVDs in the drive, Windows will warn you to remove these. Please do this before proceeding.
You will then need to restart the computer and reselect the above options to encrypt the drive.
If you have not removed all external media, you will receive the following notification in the Action Centre and will need to repeat the above steps again.
If you are presented with the following error, please notify IT by replying to the email you received directing you to these instructions for further assistance, as additional configuration may be required.
If you do not receive any of the above messages you will be asked to save your Bitlocker recovery key.
Select "Save to your Azure AD account" and click Next.
Select "Encrypt the entire drive" (You can still work whilst the disk is encrypting). Click Next.
Leave 'New Encryption Mode' selected and click Next.
Click 'Start Encrypting'.
The encryption process will now start. The length of time this will take depends on the size of disk and the amount data stored.
You can continue to use your device as normal during the encryption process.
When encryption has completed when you receive the following notification.