{"id":28194669,"url":"https://github.com/mpanighetti/add-securetoken-to-target-user","last_synced_at":"2025-10-08T22:19:24.544Z","repository":{"id":26133284,"uuid":"105793230","full_name":"mpanighetti/add-securetoken-to-target-user","owner":"mpanighetti","description":"This script adds a SecureToken to the target local user to prepare the Mac for enabling FileVault.","archived":false,"fork":false,"pushed_at":"2025-04-29T05:10:22.000Z","size":59,"stargazers_count":24,"open_issues_count":0,"forks_count":8,"subscribers_count":3,"default_branch":"main","last_synced_at":"2025-04-29T05:19:37.465Z","etag":null,"topics":["filevault","macos","securetoken"],"latest_commit_sha":null,"homepage":"","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/mpanighetti.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2017-10-04T16:48:21.000Z","updated_at":"2025-04-29T05:10:25.000Z","dependencies_parsed_at":"2025-04-29T05:19:39.425Z","dependency_job_id":null,"html_url":"https://github.com/mpanighetti/add-securetoken-to-target-user","commit_stats":null,"previous_names":["mpanighetti/add-securetoken-to-logged-in-user"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mpanighetti%2Fadd-securetoken-to-target-user","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mpanighetti%2Fadd-securetoken-to-target-user/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mpanighetti%2Fadd-securetoken-to-target-user/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mpanighetti%2Fadd-securetoken-to-target-user/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/mpanighetti","download_url":"https://codeload.github.com/mpanighetti/add-securetoken-to-target-user/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254535772,"owners_count":22087400,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["filevault","macos","securetoken"],"created_at":"2025-05-16T13:12:32.617Z","updated_at":"2025-10-08T22:19:19.486Z","avatar_url":"https://github.com/mpanighetti.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Add SecureToken to Target User\n\nThis project includes workflows for adding SecureToken to a target local user. This workflow is required to authorize programmatically-created user accounts (that were not already explicitly given a SecureToken) to enable or use FileVault and unlock disk encryption on APFS-formatted startup volumes.\n\n## Script\n\nThis script adds a SecureToken to the target local user to prepare the Mac for enabling FileVault. Prompts for password of SecureToken admin (gets SecureToken Admin Username from Jamf Pro script parameter) and target user.\n\n## Extension Attribute\n\n**SecureToken Status - Logged-In User** is a Jamf Pro extension attribute (see [Computer Extension Attributes](https://learn.jamf.com/en-US/bundle/jamf-pro-documentation-current/page/Computer_Extension_Attributes.html) in Jamf Pro Documentation). After uploading this extension attribute to Jamf Pro, you can target a policy running this repository's main script at a smart computer group of Macs where the logged-in user has a value of `DISABLED` for this script's output. Once a SecureToken has been added to the target user, this script should report `ENABLED` if everything ran as expected.\n\n## Credits\n\n- `sysadminctl` SecureToken syntax discovered and formalized in [MacAdmins Slack](https://macadmins.slack.com) #filevault.\n\n## License\n\nThis project is offered under an MIT License.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmpanighetti%2Fadd-securetoken-to-target-user","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmpanighetti%2Fadd-securetoken-to-target-user","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmpanighetti%2Fadd-securetoken-to-target-user/lists"}