Microsoft Intune announced support for FileVault on macOS devices.
Intune will restrict access to macOS boot disks
Full-disk FileVault encryption, known as FileVault 2, is a software solution that prevents unauthorized access to information on macOS boot disks.
With the recently announced support, Intune administrators will make sure no-one has access to macOS boot disks without a password.
Intune administrators will also be able to recover personal keys for corporate device users directly from the Intune console, as stated by Microsoft officials in a blog post:
The end user may use the Microsoft Intune Company Portal site on any device for to access their personal recovery key. Once they have signed in to the web business portal, they can select their FileVault-enabled macOS device from the device's thumbnails, and click Get Recovery Key. If the macOS device is not encrypted or it was encrypted before registration, they will not see a personal recovery key.
Microsoft Intune Administrators Want More Options
Here are the official release features: [1