I have a configuration profile for filevault to encrypt certain machines and escrow the PRK to the jss. This worked on two machines but now the rest of them aren't encrypting at all. They're in scope and have the config profile. It is a computer level profile, does it need to be switched to user level?
Also the computer does restart after it receives the profile, on the first two machines it gave the regular "enter your password for filevault" and "here is your recovery key" dialogues. None of the others will even after restarting multiple times and connecting to power. All Machines are running 10.13.3 so I'm not sure why the first two worked and the rest aren't