Description
FileVault is full disk encryption for Mac. When you use Jamf Now to set up FileVault, the recovery key will be stored in Jamf Now and can be used to unlock the Mac if the password is forgotten.
This article will provide the steps to enable FileVault on managed Macs. If FileVault is already enabled prior to managing the device with Jamf Now, please see the steps in Generating a New FileVault Key for Escrowing with Jamf Now.
Enabling FileVault on Managed Macs
Log in to Jamf Now.
Click Blueprints.
Select the Blueprint you would like to enable the FileVault feature with.
Click Security.
Check the box for Enable FileVault.
Click Save Changes.
The user who has the Jamf Now enrollment profile on the machine will need to log out of their account for FileVault to initiate.
Once FileVault has been enabled and the Mac submits inventory to Jamf Now the key will be on the device's dashboard on the Data Protection tile. It can be used if needed following the steps from Apple: https://support.apple.com/en-us/HT202860.
More Resources
To learn more about FileVault, see the following Apple documentation: managing FileVault in macOS.