I tried to push out BitLocker to a new laptop via Group Policy. I went into the laptop's BIOS and enabled and activated TPM. Then I set up the group policy using instructions here: http://blogs.technet.com/b/askcore/archive/2010/02/16/cannot-save-recovery-information-for-bitlocker-in-windows-7.aspx
. I applied the GPO to the OU that I put the laptop in. I did a gpupdate /force and rebooted. Nothing seemed to change. I opened the rsop.msc and saw that the policy's effects are there. I also ran "manage-bde -status c:" and it shows that the Conversion Status is Fully Decrypted and the Protection Status is Off.
I'm not sure why it's not working. My System Reserved partition is 350MB, formatted as NTFS. Microsoft says here (http://technet.microsoft.com/en-us/library/jj592683.aspx
) that the minimum size for the system partition should be 350MB and that it should be formatted as NTFS if BIOS or FAT32 if UEFI. I'm pretty sure I had to use legacy boot to get the motherboard to recognize the 3rd-party SSD.
Can someone help me solve this? Is there a way to find out WHY it's not working? Is there some log entry that I should be looking for?