We’re stuck with a Mac that refuses to complete FileVault encryption. The device was enrolled through ABM, and encryption worked earlier, but now it just won’t finish.
We’ve tried renewing profiles and reinstalling them from the terminal, but nothing seems to change. Also, wiping the device is not an option for us. Has anyone dealt with something like this?
81 Views
I’ve seen this happen when the device looks enrolled but isn’t actually syncing properly with MDM anymore. In that state, security profiles, especially FileVault can fail silently.
Before going down the wipe route, it might be worth checking whether the device is still properly linked to your MDM server through Apple Business Manager. Sometimes refreshing that association alone is enough to get things unstuck.
Adding to @sybylla point, we managed to fix it without wiping the device.
What worked was temporarily unassigning the device from the MDM server in ABM, syncing ADE accounts, so the change reflects, then assigning it back and syncing again. After that, re-running the enrollment command from the Mac side helped the profiles apply cleanly, and FileVault completed as expected. It’s a bit of a detour, but far less disruptive than starting over.
Don't have an account? Sign up
