Forrest logo
tool overview
On this page you find all important commands for the CLI tool fdesetup. If the command you are looking for is missing please ask our AI.


fdesetup is a command line tool available on macOS that is primarily used for managing FileVault, the full disk encryption system on Macs. With this tool, administrators can perform various tasks related to enabling, disabling, and managing FileVault encryption on a Mac computer.

The fdesetup tool allows administrators to enable FileVault for a specific user account or all users on the system, which encrypts the entire disk and protects the data from unauthorized access. It also provides options to add or remove individual users from the list of FileVault enabled users.

In addition to user management, fdesetup can be used to generate a personal recovery key or an institutional recovery key. These keys are essential for unlocking encrypted drives in case a user forgets their password or for administrative purposes.

The tool also enables administrators to display the current status of FileVault encryption, which helps determine if the disk is fully encrypted or if encryption is still in progress. It can also retrieve information such as the cryptographic user UUIDs associated with FileVault.

Overall, fdesetup is a powerful command line utility that enables administrators to configure and manage FileVault encryption on macOS systems, providing enhanced security for sensitive data.

List of commands for fdesetup:

tool overview