Jamf Nation Community

DaniB · ‎03-30-2022

Hello!

I'm trying to perform an OS update without user interaction (no login during OS installation restarts), the update process is defined with a policy with a linked script running JamfHelper and softwareupdate commands, and everything is working fine.

What I want to reach is that during the installation process and restarts, there are no login requests, so the user can let the mac, and when back the OS is updated.

As the FileVault is enabled i've checked this feature:

"Perform authenticated restart on computers with FileVault 2 enabled
Restart FileVault 2-encrypted computers without requiring an unlock during the next startup"

Unfortunately it didn't work, it asks for the FileVault login after the restart

Is there a way to have this working or some alternatives?

Thanks!!

Regards,

Dani

Hugonaut · ‎03-30-2022

You could try playing around with the sudo fdesetup authrestart - you can pipe a password in via plist / i can't remember how it acts when run from jamf (ie, as root from jamf) but worth a shot to play with it.

sudo fdesetup authrestart

From fdesetup man page

authrestart [-inputplist] [-delayminutes number_of_minutes_to_delay]
[-verbose]
If FileVault is enabled on the current volume, it restarts the
system, bypassing the initial unlock. The optional
-delayminutes option can be used to delay the restart command
for a set number of minutes. A value of 0 represents
'immediately', and a value of -1 represents 'never'. The
command may not work on all systems.

________________
Looking for a Jamf Managed Service Provider? Look no further than Rocketman
________________

Virtual MacAdmins Monthly Meetup - First Friday, Every Month

DaniB · ‎04-04-2022

Hi,

Thanks so much for your answer

We are still testing the feature authenticated restart, as it seems that it finally worked

But I let you know if we'll use the fdesetup command and results

Thanks again,

Regards

Dani

Jamf Nation Community

Authenticated restart with OS update