Touch ID can only be used when waking from sleep

Gabbycockerell
New Contributor

Hi Jamf Pro,

I have a user reporting that they can only use their touch ID when unlokcing from sleep, but not if they completely sign out or restart the device. I have Allow Touch ID selected in my Restrictions Config. Profile, but I'm wondering if I'm missing something else. I don't think there are any conflicting config. profiles or policies but I do have a login profile --I didn't see anything about touch ID in the Login Window payload so I assume this isn't an issue but hopefully someone can give me further insights!

Thank you,

G

3 REPLIES 3

MatthewGC
Contributor

That is the correct and expected behavior. You can’t use touchID to unlock the account from boot, from a sign out or for FileVault unlock. 

AJPinto
Honored Contributor III

No, this is working exactly as intended. TouchID can only unlock a device, it cannot "authenticate" the device for an initial login (or authenticate FileVault)

 

"To use Touch ID for these tasks, you must have logged in to your Mac already by entering your password."

Use Touch ID on Mac - Apple Support (KZ)

Gabbycockerell
New Contributor

oh yes, this completely makes sense! I should have thought of that--thank you both!