-
Notifications
You must be signed in to change notification settings - Fork 0
FileVault Token Revoker
Victor Deon edited this page Oct 9, 2025
·
1 revision
The FileVault Token Revoker tool facilitates the removal of FileVault secure tokens from specified user accounts. It complements the Secure Token Sharing Tool, enabling comprehensive management of secure tokens on macOS devices.
rocketman FileVaultTokenRevoker --username aliceThis command revokes the FileVault secure token from the user account "alice."
rocketman FileVaultTokenRevoker --username alice bob charlieThis command removes FileVault secure tokens from the user accounts "alice," "bob," and "charlie."
None. No required parameters are needed to execute this tool, though specifying users is recommended for targeted token revocation.
- Specifies one or more usernames to revoke their FileVault secure tokens.
- Type: array (space-separated list)
- Example:
rocketman FileVaultTokenRevoker --username alice bob
- Defines a custom domain identifier for the
.plistconfiguration file. - Default:
tech.rocketman.fileVaultTokenRevoker - Example:
rocketman FileVaultTokenRevoker --domain tech.rocketman.customDomain
-
Token Revocation Scope: The tool only removes FileVault secure tokens from specified users. If no users are specified via the
--usernameoption, the tool will default to user information found in the.plistfile located at/Library/Managed Preferences/tech.rocketman.fileVaultTokenRevoker.plist. -
.plist Location: Ensure any custom
.plistfiles are stored in/Library/Managed Preferences/for correct domain identification.
-
Encrypt
Encrypt any string. -
App Setup Helper
Enables Screen Recording for apps. -
Break Glass Admin
Manages emergency admin accounts. -
Edit User Profile
Updates building and department info. -
FileVault Token Revoker
Removes FileVault tokens. -
Get Backdoor Admin Password From Keychain
Retrieves backdoor admin passwords. -
List All FileVault Enabled Users
Lists FileVault-enabled users. -
Rapid Response
Triggers scripts immediately. -
Rename Computer
Renames Macs via Jamf. -
Reset Jamf Connect Login Screen
Switches to macOS login. -
Secure Token Sharing Tool
Grants secure tokens. -
Self Service Email
Creates pre-filled emails. -
Temporary Admin
Grants temporary admin rights. -
Update User Info
Syncs user data with Jamf. -
Upload Jamf Logs
Uploads log files to Jamf. -
User Privilege Management
Adjusts user roles. -
Change Static Group Membership
Change Static Group Membership -
Fetch Database
Fetch Database