Jamf Nation Community

I manage the devices via jamf pro

@lucasrinvor If you're using "DestroyFVKeyOnStandby" then you cannot use Touch ID to unlock the Mac once it has entered Standby mode. You're forcing the Mac to go back through the FileVault login process, and Touch ID is not available at that point and there's no configuration setting you can change that will make it available.

If you're setting this based on a security review, my suggestion is to push back to whoever is asking for this setting and discuss the impact to user experience.

---

@lucasrinvor DG Paystub wrote:

Hello,

I would like to set up "destroyfvkeyonstandby" so that I can continue to use the touch id. because when I close the hood of my mac after 30 seconds when I open the hood again it starts by displaying the logo of the apple then he asks me for my password without the possibility to use touch id.

Thanks in advance

---

To continue using Touch ID after your Mac wakes from sleep, you need to set the destroyfvkeyonstandby to 0, which prevents the FileVault decryption key from being destroyed when the Mac enters standby mode. Open Terminal and enter sudo pmset -a destroyfvkeyonstandby 0, then press Enter and provide your password. This setting should allow Touch ID to work correctly when you open your Mac after it has been asleep.