We're a Dell shop, and through use of SCCM 2012, MDT, and CCTK, we have a nice working task sequence which will set a BIOS password, enable and activate the TPM, and encrypt the hard drive. When we manually encrypt a machine (through Control Panel) it automatically stores the keys in AD, as it should. However, when encryption occurs as part of the task sequence, keys don't get backed up to AD. This seems to be a rather sudden change, and none of the configs have changed. The XML for MDT hasn't been edited, either.
Thoughts, fellow Spicers?!