Our Windows laptops store their Bitlocker keys in AD (within the relevant computer account), so I'd love to do something similar for Mac computers - in an automatic or semi-automatic fashion, if possible.
@ianmb FileVault 2 keys can be stored in the JSS in the associated computer record. You can create a FileVault Disk Encryption Configuration that you can apply to all of your computers and it will allow the key to be saved to the JSS. I'm not sure if a FileVault 2 key can be saved to AD or not though.
