• Welcome to the new Mac-Forums. See News and Community Announcements for more details.

Secure FileVault 2 on sleep mode?

Joined
Jan 25, 2019
Messages
1
Reaction score
0
Points
1
Hello, I am the owner of a 2015 macbook pro 15" with SSD. What I am hoping to do is make is so that when i close the lid on my macbook, the SSD will be re-encrypted, requiring the encryption password to be unlocked again. i have tried the 'sudo sh -c pmset -a destroyfvkeyonstandby 1' command, but this does not seem to be working. The way I was able to confirm that it did not work is as follows;

I have 2 accounts on my MacBook; my administrator account, and a standard account without administrative privelages. My standard account does not have permission to decrypt filevault, and as such it does not show up on initial login after the macbook has been powered down. The only account the shows up from a cold boot is my admin account since this is the only account with filevault unlock privileges. So, from what i understand, if the filevault key was actually being destroyed from ram upon entering sleep mode, then I should only be able to re-log in from my administrator account upos waking the computer from sleep, just as required at the first login from a cold boot. Hiwever, this is not the case. When waking from sleep I am able to login from either my admin account, or the standard account.

If anyone could provide me with some insight as to how I can get filevault to re-encrypt upon the macbook entering sleep mode (destroy the encryption key from memory) it would be greatly appreciated! Thank you!
 

IWT


Joined
Jan 23, 2009
Messages
6,565
Reaction score
237
Points
63
Location
Born Scotland. Worked all over UK. Live in Wales
Your Mac's Specs
iMac 5K Retina 27", August 2019, 3.6GHz Intel Core i9, Memory 32GB, 2TB SSD, macOS Mojave 10.14.6
A very warm welcome to our Forums. Thank you for your post.

Others with personal experience of File Vault (FV) will no doubt chip in soon, but my understanding was that you had to shut down the Mac to initiate the requirement for the FV password.

But as I said, I’m responding out of courtesy to a brand new member. I don’t have any use for FV.

Be patient. Others will respond soon.

Ian
 
Joined
May 21, 2012
Messages
7,853
Reaction score
143
Points
63
Location
13th state, U.S.A.
Your Mac's Specs
iPhone 11 iOS 13, 12.9" iPad Pro 1 iPadOS 13, Late 2014 Mac Mini macOS 10.15
In System Preferences > Security & Privacy, what are your settings? Have you checked in Advanced, and selected Log out after ?? minutes of inactivity?
 
Top