Can anyone point me in the direction of a good Bitlocker rollout guide?
We are a Server 2012 domain with mainly Windows 7 clients (and a handful of Windows 8) and mainly TPM hardware (but a few that aren't).
We want to use Bitlocker solely for drive encryption on client devices that are going out of the building and running Direct Access.
We have manually encrypted a few and stored the keys but we want to do this automatically and I am really struggling to find some good documentation about the process. There seem to be a lot of pages on the Microsoft site, but a lot of the advice seems to be conflicting so I am really looking for a good step-by-step guide about how to roll Bitlocker out across the domain and automatically store the encryption keys in Active Directory.
I found this:-
However, it seems to be quite dated (talks about Windows Longhorn) and so I am not convinced it is particularly current.
I have also found these sections:-
(seems to only apply to Window 8 and not Windows 7)
(seems to only apply to Server 2008 and not Server 2012)
Can anyone point me in the direction of any more relevant documentation than this?
Surely I can't be the only person trying to do this with Windows 7 and Server 2012?
Any pointers or clearer documentation would be appreciated!