M1 can't reset user passwords.

New Contributor II

My m1 MacBook is using policies for local accounts in the local account, and resetting the account password did not work.
log status Failed.
Error resetting password for user xxxx


Esteemed Contributor II

@user-CMSpwyxONO You can't reset the password if it's the only account with a Secure Token

Do you mean I need to activate Filevault and get a secure token to reset passwords?

New Contributor

You may have better success with the changePassword command. Assuming you know the old password on the account.

/usr/local/bin/jamf changePassword -username "<USERNAME>" -password "<NEWPASSWORD>" -oldPassword "<OLDPASSWORD>"

I don't know the old password, and the user also forgot too.

That could be an issue. Have you tried the usual Apple supplied methods of password recovery (Apple ID, Other admin user, FileVault recovery key and Terminal 'resetpassword' while booted from Recovery) or are these not an option?

Valued Contributor

I can't afford to use any solutions - command or script - where password is visible for everyone who has access to JSS and can review policies and scripts...