We are looking for a better way to manage our encryption by analyzing our computers with our MDM.
I've been running the command /usr/local/bin/seadmin status --device-encryption and would like to know all the potential outputs for Recovery Status.
Currently, the only output I've seen is "Locally and centrally stored" or FileVault encryption is not managed by Sophos Device Encryption.
The two other options for seadmin help and sdu have not proven helpful. The sdu option prints out a plist file but does not tell you the location of it. Does anyone know what plist file it uses?
Here is a sample output of the command.
$: /usr/local/bin/seadmin status --device-encryption
Sophos Encryption seadmin Version 1.5.2.77
Copyright 2016 - 2019 Sophos Limited. All rights reserved.
Last Synchronization: June 9, 2020 at 11:12:17 AM EDT
Interval : 120 seconds
Device Encryption Status
The current policy requires to encrypt
Boot Volume : Yes
Data Volumes : Yes
Disk : Macintosh HD
Mounted on : /
Volume Id : 13146A5D-6C06-482C-B731-5F44EB641F80
Encryption Status: Encrypted
Recovery Status : Locally and centrally stored
Hi jdemaio
The disk encryption status can be referenced from this document with the help of the status of the endpoint. You don't need to run any commands to get information regarding the disk encryption status and as long as the recovery key is stored locally and centrally, there is nothing to worry about.
Hi jdemaio
That command is used when you want to verify that the recovery key has been stored locally and centrally. However, I will check with my team as per your requirement if that is possible.
Shweta
Hi jdemaio
I confirmed with my team, the potential output as I suggested that you will get to know the encryption status for the drives with the help of the above command, that would be is the recovery key stored locally or centrally. Let me know if you have any further concerns.
Shweta
Quote