Hi,
Check Point Endpoint Security (client) will have BitLocker Management as an option in the
Full Disk Encryption Blade policy.
As you know, BitLocker is an integrated part of Windows. The Check Point BitLocker Management feature uses
the Endpoint Security Server, Client Agent and Management UI to manage BitLocker. TPM is required for Managed BitLocker.
Existing BitLocker Encrypted machines can be "taken over" and put under Check Point Endpoint Security Management without being decrypted as long as the policy is using BitLocker Management. Recovery Keys and Data will then be uploaded to the Endpoint Management Server.
Switching from BitLocker to Check Point FDE is easy, once the machines have been put under BitLocker Management. At least from a management perspective, just change the policy to use Check Point Full Disk Encryption. Note however that this operation will trigger a BitLocker decryption followed by FDE encryption. This re-encryption is a fairly long process and also leaves parts of the disk in clear text during the operation.