i wondering if possible? encrypt of our macbook pros want encrypt using our ad credentials not local user account.
appreciated.
thanks.
if encrypt startup volume, decryption occurs before normal login screen, , requires local account in order @ volume's encryption key. done providing single local account purposes of decryption only. once decrypted, user can login normally.
if encrypt other disks, when login receive prompt asking password these corestorage can unlock them. @ point key (once entered) can stored in keychain which, paranoid, can have own password, auto-lock settings etc. desired.
encrypt drives other time machine disk, have use terminal via the diskutil command, section want corestorage/cs commands, these allow convert disk corestorage (may have erase in process) , set encryption key like. dunno if there gui's it, disk utility supposed able couldn't work on disks, , did had erased (which terminal command can avoid), has buggy password field makes difficult set decently secure password such randomly generated one.
i'd recommend leaving startup volume unencrypted , keep os on it, create separate partition encrypted data, way can store key in keychain. os-only volume should safe leave unencrypted in terms of data content, unless you're scared accessing machine tamper os in case encrypting idea, , can done single local user account.
Forums Macs macOS Older OS X Versions Mac OS X Lion (10.7)
- iPhone
- Mac OS & System Software
- iPad
- Apple Watch
- Notebooks
- iTunes
- Apple ID
- iCloud
- Desktop Computers
- Apple Music
- Professional Applications
- iPod
- iWork
- Apple TV
- iLife
- Wireless
No comments:
Post a Comment