I am using MDT 2012 update 1 and have enabled BitLocker during the TaskSequence and Customsettings.ini. I have also created a Data Recovery Agent certificate in a Group Policy. The drive is correctly encrypted during the deployment process, but the Data Recovery Agent certificate is not added. The computer is in an OU with the Data Recovery Agent Group Policy settings. I can decrypt the drive, and then re-encrypt the drive and it will have the Data Recovery Agent certificate installed. How can I get the Data Recovery Agent certificate to be installed during the deployment process?
↧