Reply To: Introducing support for macOS drive encryption(FileVault)

AvatarGrace Baker
2 pts

Hey, Thanks for reaching out to us.

The Institutional Recovery Key is used by organizations or institutions that require a common key to decrypt all their devices. The advantage of using this is that if the key is lost or corrupted, new one can be downloaded from the portal itself.
The Personal Recovery Key is generated during the time of encryption. These keys are received by the user when the encryption gets completed. This key will not be recorded anywhere in the portal and the user must note down this key. If the key is lost, the device cannot be decrypted. You will have to reset the device.
When the Institutional and Personal Recover Key is used, both the institutional and personal recovery key will be generated for the user. So even if the personal key is lost, you will be able to decrypt the device using the institutional recovery key.

Check out our help doc on managing FileVault with Hexnode MDM to know more on this.

Grace Baker
Hexnode MDM