Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

FileVault Key Escrow - Is there a way to filter devices without Key Escrow?

Jose-MK1
Here to help
‎Sep 28 2022 11:25 AM
‎Sep 28 2022 11:25 AM

FileVault Key Escrow - Is there a way to filter devices without Key Escrow?

Working on a project to deploy FileVault + PRK Key Escrow to all MacOS endpoints. Problem is some endpoints either FileVault encrypted before receiving the Key Escrow profile or they just never sent the Recovery Key to Meraki. I know I can create a Security Policy that detects if a MacOS endpoint is encrypted and also in the Devices page add a column and sort based on encryption status on/off. But I want to sort/filter on specifically FileVault enabled encrypted devices that do not have their key stored in the Meraki Key Escrow. Does anyone know a way to do this? 

Labels:
0 Kudos
Subscribe
1 Reply 1
Jose-MK1
Here to help
‎Sep 28 2022 11:31 AM
‎Sep 28 2022 11:31 AM

For reference, here's some screenshots of what it looks like when FileVault is enabled without the PRK Key Escrow working and with it working. 

 

 Devices_-_Meraki_Dashboard.jpg

 

Devices_-_Meraki_Dashboard_Escrow.jpg

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.