This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Macbook No Secure Token

Hi.

 

So we have a macbook pro with ZERO users installed with Secure Tokens.  running 10.13.6 when you try to install sophos it installs but will not encrypt saying no users have secure token.

 

I have hunted high and low on the internet done all sorts of things including rerunning setup which allows you to create another users SCARY!! but doesn't give it a secure token so i'm a bit stuffed.

 

I read in this thread https://community.sophos.com/kb/en-us/128052

That you can activate filevault2 another way... If I do this it will of course not be through sophos and will have a local key, if that works can i do that then install sophos over the top if that creates a secure token for the user and then go from there, and somehow then get that key into shopos.  Or if anyone else has had similar if it's only the odd laptop like this am i better just blowing them away and re-creating from scratch and then copying their data back from a backup onto the laptop.



This thread was automatically locked due to age.
Parents Reply Children
  • My brain is aching as it turns out nearly all of the Macs i'm looking at to install have 10.13 or 10.14 and zero secure token users on them :)

    Which is a nightmare as it says if you have zero users you need to wipe and start again.  But, using a command       "dscl . -append /Users/username AuthenticationAuthority ';SecureToken;'" seems to short term until you login add the token to them and with a bit of careful timing and doing that and then going in as the user to enable filevault but not enable it just click on enable then cancel on the screen that asks about a key... then installing it, you can get away with it and get it to install....  It's a bit of trial and error i've managed a couple like that today when the consensus seems to be you need to rebuild.  Once you have the one user done it's fine.  Then logout of that user and login as another user and it just asked for their username / password and the admin account that it worked with in the first place.

  • Nightmare - Good luck with that!

    I do think this is a bug/issue with APFS, it seems more common than it should be!