Prompt users to change their password/PIN

There are two ways you can prompt users to change their password.

Note This option is only available for Windows.
  • Use the Require new authentication password/PIN from users option in the encryption policy.

    This option is turned off by default. It forces a change of the BitLocker password or PIN after the specified time. An event is logged when users change their password or PIN.

    Note The feature is only available in Central Device Encryption 2.0 or later.
  • Use the Trigger change of password/PIN option on the Summary tab in a computer's details page.

    This requires users to immediately change their BitLocker password or PIN. A message is displayed when the request has been sent successfully.

On the endpoint, users are prompted to set a new BitLocker password or PIN. If users close the dialog without entering a new password or PIN, the dialog is shown again after 30 seconds. This stops when they enter one. After users have closed the dialog five times without changing the password or PIN an alert is logged.