Question

At what point are you enabling FileVault via MDM?

  • 2 February 2021
  • 8 replies
  • 13 views

Badge
  • Active Member
  • 22 replies

When are you guys enabling FileVault via MDM, at logout or login or using a custom profile that would enable FV immediately ?


8 replies

Userlevel 2
Badge +2

We do it as part of our set up configuration profile with highest priority, so encryption happens shortly after account creation.


Open Thread in Slack
Userlevel 2
Badge +2

They get a pop up that says "Filevault must be enabled" and they authenticate and it starts in the background.


Open Thread in Slack
Badge

could I ask how do you do that ? i mean to force it immediately after the account setup and ask them to enter their password so the encryption starts ?


Open Thread in Slack
Badge

In our environment it happens after the first reboot. I would also like to know how to force it immediately.


Open Thread in Slack
Userlevel 2
Badge +2

We send a configuration profile to the machine. It turns it on for new deployments and disables turning it off. 🤷 How the MDM does that I'm not 100% sure.


Open Thread in Slack
Badge

yeah enabling FV via configuration profile doesn't allow it to be disabled but how can you force immediately 😄 can you share your profile here ?


Open Thread in Slack
Userlevel 2
Badge +2

Ah. My mistake. We have it set to "User is always prompted at log in".


Open Thread in Slack
Userlevel 2
Badge +2

So thats why it happens automatically 😅


Open Thread in Slack

Reply