Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 5 subscribers
  • Views 18382 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Add new owner to SafeGuard 7 for Mac

DC_IT_Manager

I have successfully bound a MacBook Pro running Yosemite to our Active Directory Network.  I created a user in AD called "Mac User" and logged into the Mac using this Network ID.  I successfully installed Safeguard and it correctly talks to the SafeGuard Management Server.

So far so good.  This is big progress.

When I reboot, the FileVault pre-boot environment comes up with MacUser as the only user who can log in.

If I add myself  - another user in AD - as the new owner in Safeguard Management and save the DB and sync the macbook and I reboot, the user MacUser is STILL the only user that can login to the Filevault pre-boot environment.  

This is something that works on Windows 7 much more cleanly.  Otherwise, the only way to install Safeguard on a Mac is to make sure you are using the account for the person the machine belongs to.  We're supposed to have more flexibility than that.

Suggestions?

Thanks.

Adam in DC

:56719


This thread was automatically locked due to age.
Parents
  • 0

    Hi Adam,

    unfortunately, the FileVaul2 PBA provides limited functionality in comparison to the SafeGuard Device Encryption POA you might know from your the Windows Clients.

    Adding Users to the OS X FileVault2 PBA is a local process and cannot be performed remotely via the SafeGuard Management Center.

    From the sgdeosx_7_Administrator help.pdf:

    "4.4 Add FileVault 2 User

    Only users that are already registered for FileVault 2 at the endpoint will be able to log on to the system after a restart. In order to add a user to FileVault 2 proceed as follows:

    1. While the Mac is still running, log on with the user you want to register for FileVault 2.
    2. Provide the credentials of that user in the dialog Enable Your Account. If you are using Mac OS X version 10.8, the user's own credentials as well as those of a user already active in FileVault 2 will be requested. With Mac OS X version 10.9 this is no longer necessary.

    Therefore, with the exception of Mac OS X version 10.8, users will be able to log on as easily as if there was no disk encryption enforced"

    Regards,

    ChrisD

    :56738
Reply
  • 0

    Hi Adam,

    unfortunately, the FileVaul2 PBA provides limited functionality in comparison to the SafeGuard Device Encryption POA you might know from your the Windows Clients.

    Adding Users to the OS X FileVault2 PBA is a local process and cannot be performed remotely via the SafeGuard Management Center.

    From the sgdeosx_7_Administrator help.pdf:

    "4.4 Add FileVault 2 User

    Only users that are already registered for FileVault 2 at the endpoint will be able to log on to the system after a restart. In order to add a user to FileVault 2 proceed as follows:

    1. While the Mac is still running, log on with the user you want to register for FileVault 2.
    2. Provide the credentials of that user in the dialog Enable Your Account. If you are using Mac OS X version 10.8, the user's own credentials as well as those of a user already active in FileVault 2 will be requested. With Mac OS X version 10.9 this is no longer necessary.

    Therefore, with the exception of Mac OS X version 10.8, users will be able to log on as easily as if there was no disk encryption enforced"

    Regards,

    ChrisD

    :56738
Children
No Data
Unfiltered HTML