MacOS Filevault not syncing with Active Directory credentials

New Contributor III

Three of my remote MacOS users with AD accounts are unable to sync their filevault and AD creds. Typically we have users log into the VPN and then change passwords locally in syst prefs. In a couple of cases I have users who can’t seem to authenticate to the domain from their login screens. We have another local account on all our machines that is just a non-admin VPN access account. The current work around is to log in there, get on the VPN and switch user (which only then takes their AD creds). This is a temporary fix and reboots prompt the issue to return. I’ve checked and they both have Secure Token enabled. Is there a good fix for this? I had someone suggest FDESetup commands in Terminal but sounds messy.

Does anyone have a Jamf solution? Or any solution?


Valued Contributor

run a policy regulary that updates the preboot settings with the following command:

diskutil apfs updatePreboot /

New Contributor III

Oooh, that looks very simple. I'll test it out! Thanks.

Contributor III

I highly suggest that you start using NoMAD. It's well known that filevault encrypted macs do not mesh with AD. You'll save yourself a lot of headaches.

Please review this guide