Re: [Fed-Talk] How to tell if FileVault is being used on a computer
Re: [Fed-Talk] How to tell if FileVault is being used on a computer
- Subject: Re: [Fed-Talk] How to tell if FileVault is being used on a computer
- From: "Simon, Gary" <email@hidden>
- Date: Thu, 31 Jan 2008 16:46:48 -0700
- Acceptlanguage: en-US
- Thread-topic: [Fed-Talk] How to tell if FileVault is being used on a computer
Title: Re: [Fed-Talk] How to tell if FileVault is being used on a computer
Zach,
That looks like what I was looking for. I figured there needed to be something in the directory, but it sure didn’t just jump out.
Gary
On 1/31/08 4:24 PM, "Zachary Benz" <email@hidden> wrote:
Gary,
When FileVault is enabled for a user, there should be an entry in Directory Services for that user indicating that their home directory is a sparseimage file. Prior to 10.5 this was accessible in NetInfo by looking at the home_loc property for the user. Should be able to get the new Directory Services equivalent in Leopard via the dscl command line tool.
Here's how the home_loc setting looks under 10.4:
<home_dir><url>file://localhost/Users/zobenz/zobenz.sparseimage</url></home_dir>
The home_loc property is only used when the home directory is not in its usual place (e.g. because FileVault is on, or the user has a network home directory). Note that the home property always refers to where the user's home is mapped to (e.g. /Users/zobenz/ in my case), so it isn't informative for your purposes.
-Zach
On Jan 31, 2008, at 4:18 PM, Simon, Gary wrote:
I am trying to come up with a way to look at our Macs remotely and tell whether they are using FileVault for any of the users on the system. Is there some file or files that would only be present if FileVault was in use? Or maybe a plist file that lists users that are using FileVault? So far I have not been able to find anything.
I do know that /Library/Keychains/FileVaultMaster.keycahin (and .cer) will be present if a master password is set. However, you could have a master password set and still not using FileVault for any users.
Also, when you turn FileVault for a user there is an entry in /Volumes/.com.apple.FileVault created for that user. However, if that user turns off FileVault, it doesn’t seem to remove that entry.
Any ideas?
Gary Simon
CSU TechDev
Sandia National Laboratories
<ATT00001.txt>
Sandia National Laboratories
Cognitive Systems Department
(505) 284-1510
email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden