Skip to main content
Question

Disk Encryption Recovery Key Status: Not Present / No encryption key

T
Forum|alt.badge.img+2

Hi everyone!

Recently we faced with a problem - one of the user after enrolment in the  Disk Encryption tab don't see Recovery Key, it says Disk Encryption Recovery Key Status: Not Present

Rest of the user normally encrypting and receive recovery keys for restore.

now we have problem - user laptop asked for reboot after some actions and macbook asked for the key. but in the profile its empty, but status is encrypted. Pls kindly assist! How its possible with jamf to decrypt this mac and hard drive?? is there any way? 

Thank you in advance! Best regards!

 

    4 replies

    mojo21221
    Forum|alt.badge.img+12
    • mojo21221
    • Valued Contributor
    • 117 replies
    • August 25, 2022

    We had a scenario similar to yours a while back. Luckily we were still able to sign into the the device and use this tool. https://github.com/homebysix/jss-filevault-reissue

     

    T
    1 person likes this
    • T
      temafey
    T
    Forum|alt.badge.img+2
    • temafey
    • Author
    • New Contributor
    • 1 reply
    • August 26, 2022
    mojo21221 wrote:

    We had a scenario similar to yours a while back. Luckily we were still able to sign into the the device and use this tool. https://github.com/homebysix/jss-filevault-reissue

     


    Hi. thank you for the solution. 

    You say that was able to sign in into devise - how you could able if mac ask for the key in the beginning of the boot

    Th

    elliotjordan
    Forum|alt.badge.img+12
    • elliotjordan
    • Valued Contributor
    • 143 replies
    • June 15, 2023

    Hi all! I'm the maintainer of the jss-filevault-reissue workflow referenced above, and I've got a quick update that may be of interest to you.

    My team has published a new tool called Escrow Buddy, which regenerates FileVault keys at the loginwindow, thus avoiding the need to prompt users for their password later. It should be suitable as a drop-in replacement for my previous jss-filevault-reissue workflow at most organizations.

    You can read more in this announcement on the Netflix Tech Blog, and this post on my site specifically covers migrating from my old workflow to Escrow Buddy. Escrow Buddy's source code and installer are available on GitHub.

    Thanks!

    elliotjordan
    Forum|alt.badge.img+12
    • elliotjordan
    • Valued Contributor
    • 143 replies
    • June 16, 2023

    Hi all! I'm the maintainer of the jss-filevault-reissue workflow referenced above, and I've got a quick update that may be of interest to you.

    My team has published a new tool called Escrow Buddy, which regenerates FileVault keys at the loginwindow, thus avoiding the need to prompt users for their password later. It should be suitable as a drop-in replacement for my previous jss-filevault-reissue workflow at most organizations.

    You can read more in this announcement on the Netflix Tech Blog, and this post on my site specifically covers migrating from my old workflow to Escrow Buddy. Escrow Buddy's source code and installer are available on GitHub.

    Thanks!

    mojo21221
    1 person likes this
    • mojo21221
      mojo21221

    Reply


    Most helpful members this week

    Terms & ConditionsCookie settingsAccessibility statement

    Cookie policy

    We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

     
    Cookie settings