My bit locker enabled USB ssd drive is write protected from GPO policies in Microsoft Intune and will not enable me to save data to it

Question

My bit locker enabled USB ssd drive is write protected from GPO policies in Microsoft Intune and will not enable me to save data to it. If I look at the attributes of the drive itself within Diskpart, it does not show that it write protected but when I try and save data to it, I can't because it is "write Protected" according to the error 1105. My IT dept. thinks that the FIPS policy is breaking the GPO that allows the USB device to be written to.

Answer 1

@Rex Wilburn Thanks for posting in our Q&A.

Honestly, I'm not familiar with this issue. There is no helpful information I can share with you. Let's wait if someone else can provide something.

Or it is suggested to create an online support ticket to get more help. Here is the support link:

https://learn.microsoft.com/en-us/mem/get-support

Thanks for your understanding.

---

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Answer 2

Hi,

Not clear if you are using GPO, from Group Policy or is this a Intune Config.

Try clearing the write-protection attribute using Diskpart:

1. Open Command Prompt as Administrator.
2. Type diskpart and press Enter.
3. Type list disk to display all connected drives.
4. Identify your USB drive and type select disk X (replace X with the disk number).
5. Type attributes disk clear readonly and press Enter.
6. Exit Diskpart and check if the drive is writable.

Is your IT team able to adjust the FIPS policy or Bitlocker settings in Group Policy so settings comply?