You can also install the helpdesk website and the self-service recovery website. Here you can create a BitLocker policy and configure how you want your device’s drives to be encrypted and what to store for recovery. The first thing you’ll notice in ConfigMgr, is the new section under Endpoint Protection. MBAM used to be part of the Microsoft Desktop Optimization Pack and has now been added as a part of ConfigMgr and Intune/EPM.
MBAM consists of administration console which can be accessed using a web browser, as well as an agent which must be installed on every computer in the organization, either manually or using Active Directory. Microsoft BitLocker Administration and Monitoring (MBAM) is a tool for managing, enforcing and monitoring BitLocker drive encryption across an entire organization from a central location. CBC is not used over the whole disk it is applied to each individual sector. By default, it uses the AES encryption algorithm in cipher block chaining (CBC) or XTS mode with a 128-bit or 256-bit key. It is designed to protect data by providing encryption for entire volumes. So what is BitLocker and what is MBAM? Here are some short excerpts from Wikipedia:īitLocker is a full volume encryption feature included with Microsoft Windows (Pro and Enterprise only) versions starting with Windows Vista. So today, we’re going to take a look at how it all works. Recently, Microsoft released an update for ConfigMgr that had the MBAM integration. A while ago, Microsoft BitLocker Administration and Monitoring (MBAM) was announced to be discontinued in it’s current form and instead, be integrated in ConfigMgr / Intune.
0 kommentar(er)
