FV2 + AD Mobile accounts

Matt_Ellis
Contributor II

Here is the issue im having. If i have a mac with a local management admin account. And a AD linked Mobile account then i encrypt the system via a policy. it encrypts fine. i can add the mobile account and management account to file vault no problem. But when i go to login it require that i login to both FileVault and then to the mobile account. Is there away to have file vault auto log the user into the mobile account?

So they only have to put in the cached password once?

1 ACCEPTED SOLUTION

jrserapio
Contributor

I think you are looking for Fv single sign on I believe.
/usr/bin/defaults write /Library/Preferences/com.apple.loginwindow DisableFDEAutoLogin -bool NO
You may have issues with Kerberos tickets getting generated if you are using this method. We chose to disable SSO to alleviate this.

View solution in original post

2 REPLIES 2

jrserapio
Contributor

I think you are looking for Fv single sign on I believe.
/usr/bin/defaults write /Library/Preferences/com.apple.loginwindow DisableFDEAutoLogin -bool NO
You may have issues with Kerberos tickets getting generated if you are using this method. We chose to disable SSO to alleviate this.

Matt_Ellis
Contributor II

Thanks for the help that worked for me