Adding New users to a MAC with Encryption Deployed

  1. To add an AD User to a machine with MNE installed first unlock the disk with a user that already has access to the machine and is a FileVault enabled user.
  2. Then log out and have the new AD User log in. 
  3. After they have logged in, have them log out and log in as an admin user that is a FileVault Enabled user. 
  4. Go to System Preferences -> Security & Privacy -> FileVault and then click on the lock in the lower left hand corner to allow changes. 
  5. There will be a section that says, ”Some users are not able to unlock the disk”. 
  6. Click on the lock to make changes, put in the admin password. 
  7. Click on the “Enable Users” button. 
  8. Choose the new AD username. 
  9. Have the user put in their password, click OK and then click done. 
  10. They should then be able to log into the Mac from powering on. Restart the Mac and their Username should show up on the login screen at startup which means they are a FileVault user that can unlock the disk.


Article ID: 2246
Wed 5/5/21 1:11 PM
Wed 5/5/21 1:23 PM