Seen a couple requests for this one so making a post to track it so it doesn’t get lost in the slack/discord noise.
Bitlocker by default will use 128 bit encryption.
Some folks may want to change the default to use 256 bit.
The challenge is when this would report not compliant, people have come to expect ImmyBot would enforce compliance.
It appears the only way to change the encryption type would be to decrypt the drive which on older devices could take hours and hold up a session before attempting to encrypt again with the new encryption type.
If anyone in the community has feedback on how they think this task should be handled let us know here!