Recycle Bin For Deleted Devices
Would be great if there was a recover-msoldevice cmdlet or some way to recover a bitlocker recovery key after a device was deleted.
Thanks for your feedback. We are looking into it and evaluating different options for solving the use cases mentioned in this thread. We will update this thread once we have more information to share.
Walter Rey commented
This is something that we all need. Same functionality as in the on-premise AD with its Recycle Bin.
Not sure why this was not included since the beginning since the functionality was already available in AD but hopefully it is added soon.
I just recently had an employee leave the company and there is some proprietary data on his encrypted company machine and we can't access it because the BitLocker key was stored on the ADD/Intune record and that device entry was removed when the AD account was removed.
Jonathan Thomas commented
Currently own a very expensive door stopper (laptop with deleted bitlocker key). Would be a good idea to have the ability to recover deleted keys from AAD.
Priit Pavelson commented
Martin Wüthrich commented
yes, would love that too.
the existing cmdlet Restore-AzureADMSDeletedDirectoryObject should be renamed until then, it's kind of misleading with "Objects" when it does only cover specific O365 groups
Martins Jonass commented
Absolutely needed. External drive got locked with BitLocker with device I was backing up before reinstallstion. I didn’t know that till I connected external drive to device after reinstall. But I also deleted device in Azure AD to keep it organized.
I can’t access backup data without the BitLocker key. Please make it possible.
Yannic Graber commented
Absolutely needed. Something like a 30 day deletion retention would be nice, like it's done for O365 data for example.
Eduard Renner commented
+1, needing the same thing as well.
I'm looking for way to recover an accidentally deleted device with the same goal as you: recovering a bitlocker key...