Help

Not encrypted but JAMF inventory says it is ???????????

tcandela
Valued Contributor II

Posted on ‎09-12-2019 10:01 AM

i have installed Mojave on new Mac Mini computers, why is the inventory showing the computer is encrypted when it is not????

Name: Macintosh HD (Boot Partition)
Last Inventory Update: Yesterday at 3:15 PM
FileVault 2 Partition Encryption State: Encrypted
Individual Recovery Key Validation: Unknown
Institutional Recovery Key: Not Present
Disk Encryption Configuration:
FileVault 2 Enabled Users: test

Labels:
0 Kudos
3 REPLIES 3

Sichas
Contributor

Posted on ‎09-12-2019 10:46 AM

Is this the Mac mini from 2018? If so, it has the T2 chip in it, and they're encrypted by default. Turning on FileVault simply gives you the ability to decrypt it with a password.

Further reading: https://www.jamf.com/jamf-nation/discussions/28988/t2-chip-with-filevault

0 Kudos

tcandela
Valued Contributor II

Posted on ‎09-12-2019 11:12 AM

yes, it is a 2018 mac mini. These are enrolled and setup not by any DEP, it's enrolled manually where i work.

Security & Privacy says 'filevault is turned off for the disk macintosh hd'

sudo fdesetup status says 'filevault is OFF'

diskutil apfs list. has disk1s1 Filevault NO (encrypted at rest)

so i'm confused, is it off or on ?

it's AD joined and I have a config profile to stop that stupid security token from popping up for each user. The first admin account i created says its fv2 enabled, while AD login users are not fv2 enabled.

0 Kudos

killa_bee
New Contributor

Posted on ‎12-04-2020 08:29 AM

@tcandela do you happen to have that config profile, to stop the security token from popping up, handy?

0 Kudos