Due to an incorrect password that has been used during the secure token assignment for a user, FileVault will fail to be enabled by Sophos Device Encryption (CDE). Using the tool fdesetup to enable the encryption shows error code 76.
The following error message is also displayed in the file SophosDiagnosticslog that is located at /Library/Logs/
2019-09-04 15:40:35.173 [SophosEncryptionD 25755:385134 enc Error] [FileVault2Wrapper.m:436] Failed to enable FileVault2 with exit code 76 - the users secure token is invalid.
This knowledge base article contains the steps on how to resolve this issue.
The following sections are covered:
Applies to the following Sophos products and versions Central Mac Device Encryption 1.5
sysadminctl interactive -secureTokenOff <username> -password
sysadminctl interactive -secureTokenOn <username> -password
Sign up to the Sophos Support SMS Notification Service to get the latest product release information and critical issues.
If you've spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article. This is invaluable for us to ensure that we continually strive to give our customers the best information possible.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.