NoMADLogin-AD bypasses the Login Window with "DisableFDEAutoLogin" set to TRUE
Summary
Setting the "DisableFDEAutoLogin" preference key to "TRUE" for the "com.apple.loginwindow" domain does not work as expected when NoMADLogin-AD is installed on FileVault enabled systems.
Steps to reproduce
- Enable FileVault on device
- Install/Enable NoMADLogin-AD, run the following:
sudo /usr/local/bin/authchanger -reset -AD
- Run the following in Terminal.app to disable autologin:
sudo /usr/bin/defaults write /Library/Preferences/com.apple.loginwindow DisableFDEAutoLogin -bool YES
- Reboot device and log in as any user at the EFI boot
- System will autologin
What is the current bug behavior?
NoMADLogin-AD does not honor the DisableFDEAutoLogin key, users will still autologin
What is the expected correct behavior?
Users should get stopped at the NoMADLogin-AD loginwindow
Relevant logs and/or screenshots
N/A
Possible fixes
This was fixed in Jamf Connect Login ;)