hi everyone. been testing High Sierra imaging (not DEP thin deployment), full imaging using the latest 17A405 installer. deploying the same applications as per our 10.12 imaging. imaging converting to APFS, encryption and AD bind works fine to the point i can login with my AD account.
problem is, once the Mac has been encrypted (takes a day to complete on a 2015 MacBook Air with 256GB SSD) and you enable the main admin account and other accounts, mix of AD and local accounts - the encrypted users do NOT show in the FileVault login screen.
as suggested in other discussions - i have tried unbinding the Mac from AD and rebinding it, logging back into the accounts and then restarting - still doesn't work.
have removed the existing user (deleting accounts via System Preferences - Users & Groups) and then recreating the local accounts, login in and encrypting them - same for AD accounts
still doesn't show in the FileVault login window.

1. Mac Fdesetup Manual Download
2. Mac Fdesetup Manual Pdf

we are running JAMF 9.101.0-t1504998263
macOS High Sierra 17A405

Mac Fdesetup Manual Download

Mac Fdesetup Manual Pdf

If you launch Disk Utility while booted from an encrypted drive, you can select your boot drive, then select Turn Off Encryption. From the File menu. It'll prompt you for a password, but the password of any account that appears at the FileVault 2 pre-boot login screen will work here. Its original key is still escrowed. After the reimage and enrollment, the FV configuration profile is applied and our normal workflow of installing software and applying a policy to enable FV is followed. A recon is performed. Result - The key shows as unknown. Manual regeneration/recon changes its status to invalid. FileVault was introduced with Mac OS X Panther (10.3), and could only be applied to a user's home directory, not the startup volume. The operating system uses an encrypted sparse disk image (a large single file) to present a volume for the home directory.

1. This tutorial explains how to create a manual connection on Mac OS X, if you'd prefer not to use our HMA! Pro VPN client. You can choose to establish a manual connection using the IPSec or L2TP protocol, so select a tab below and follow the instructions.
2. Jul 09, 2017  FileVault is a built in application on your Mac that allows you to fully encrypt your hard disk. To check the status of file vault within Terminal type the following: fdesetup status To enable FileVault type the following:. Terminal Continue reading MacOS – Manage FileVault from command line→.
3. Fdesetup(8) BSD System Manager's Manual fdesetup(8) NAME fdesetup- FileVault enabling tool SYNOPSIS fdesetup verb options DESCRIPTION fdesetup is used to enable or disable FileVault, to list, add, or remove enabled FileVault users, and to obtain status about the current state of FileVault. Most commands require root access and need to be.
4. Whenever doing a software install, or a software update thorugh ARD, there are some that require a restart of the system. If working with a system remotely, and the user is not in front of the system, when the system shuts down and restart the FileVault login comes up, and requires someone to log back in.