Secure Token Regenerating

jaugust
New Contributor III

Weird thing happening on both Apple Silicon & Intel Macs running Big Sur:
Intel is on 11.1
AS is on 11.2.3

I'm testing a script to pass a Secure Token from our local admin to our mobile accounts, assuming the mobile account doesn't have one. What's odd is that, after running "sysadminctl interactive -secureTokenOff usertoremovetoken" and then checking with "sysadminctl -secureTokenStatus usertoremovetoken" the user shows as disabled. After logging in with the user, it then shows as enabled after running the status command again. Even after updating APFS Preboot, the user, once logged in, is enabled for secure token and is then able to unlock the drive. Any idea why? It's making testing this more challenging...

0 REPLIES 0