Detect

Question

Greetings.  I'm trying to find the best way to configure smart group criteria to detect a MacBook that doesn't have their recovery key setup in the JSS.
I have a workflow to send these folks whose key is missing, but the criteria to setup a smart group doesn't seem to pick them up.  
We do not use Institutional keys, only personal and I do have a key-redirection config profile in place.

Anyone have a working smart group to pick up when recovery keys are &#034;Not Configured&#034; in Jamf Pro and wouldn't mind sharing the search criteria?  I've tried multiple ways and when I do it and spot check a few machines, they actually have keys in the Jamf Pro server.

Thanks.

mm2270 · Accepted Answer

Have you tried?( FileVault 2 Status | is | All Partitions EncryptedorFileVault 2 Status | is | Boot Partitions Encrypted )andFileVault 2 Individual Key Validation | is | UnknownThat seems to get those systems on my server. Note the parens around the first 2 criteria items. I believe that will be important.Alternatively, if you happen to use your own FV2 Status EA, like the one from @rtrouton, you can swap that in place of those first 2 criteria items.

steve_summers · Answer

Thanks mm2270.  This got me where i needed to be!

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded