Share via

Intune device keeps asking for Bitlocker key

Yen Ceulemans 0 Reputation points
2026-01-14T09:51:33.4866667+00:00

Hi,

I am experiencing an issue with an Intune-managed device that repeatedly prompts for a BitLocker recovery key. When the key is entered, the device returns the error code 0xc000000f. To try to resolve this, I formatted the laptop, exported the hardware hash, re-imported it into Intune Autopilot, wiped the device in Intune, and reassigned the correct user to the device. After logging in with the right user, the device works for a short time but then starts asking for the BitLocker recovery key again. The device in question is an HP ProBook G8.

Could you advise how to permanently resolve this issue?

Thank you.

Microsoft Security | Intune | Security
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Q&A Assist
    2026-01-14T09:51:43.9566667+00:00
    AI generated content. This question contains an answer created with AI from Q&A Assist. Learn more

    To resolve the issue of your Intune-managed device repeatedly prompting for a BitLocker recovery key, you should consider the following troubleshooting steps:

    1. Check TPM Status: Ensure that the Trusted Platform Module (TPM) is present and functioning correctly. The error code 0xc000000f can indicate issues with the TPM.
    2. WinRE Configuration: Verify that the Windows Recovery Environment (WinRE) is enabled on the device. You can check this by running the command reagentc /info in an elevated Command Prompt. If it is disabled, enable it using reagentc /enable.
    3. BIOS Settings: Ensure that the UEFI BIOS settings are correctly configured for TPM. This includes checking that TPM is enabled and that Secure Boot is configured properly.
    4. Review Event Logs: Look into the BitLocker-API event logs for any specific error messages that could provide more context on why the recovery key prompts are occurring. Focus on the Management and Operations logs under Applications and Services logs > Microsoft > Windows > BitLocker-API.
    5. Policy Configuration: Double-check the BitLocker policy configuration in Intune to ensure that it aligns with the requirements for your device. Misconfigurations can lead to repeated prompts for recovery keys.
    6. Device Compatibility: Confirm that your HP ProBook G8 meets all hardware requirements for BitLocker and Intune management. Sometimes, specific hardware configurations can lead to issues with encryption.

    If the problem persists after these checks, consider reaching out to Microsoft support for further assistance, as they can provide more tailored help based on your specific device and configuration.

    References:

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.