Skip to main content

Hi Jamf Pro,

I have a user reporting that they can only use their touch ID when unlokcing from sleep, but not if they completely sign out or restart the device. I have Allow Touch ID selected in my Restrictions Config. Profile, but I'm wondering if I'm missing something else. I don't think there are any conflicting config. profiles or policies but I do have a login profile --I didn't see anything about touch ID in the Login Window payload so I assume this isn't an issue but hopefully someone can give me further insights!

Thank you,

G

That is the correct and expected behavior. You can’t use touchID to unlock the account from boot, from a sign out or for FileVault unlock. 

No, this is working exactly as intended. TouchID can only unlock a device, it cannot "authenticate" the device for an initial login (or authenticate FileVault)

 

"To use Touch ID for these tasks, you must have logged in to your Mac already by entering your password."

Use Touch ID on Mac - Apple Support (KZ)

oh yes, this completely makes sense! I should have thought of that--thank you both! 

Reply


Terms & ConditionsCookie settings