Skip to main content

Reset a FileVault Password When a Mac Is Offline

Overview

If a macOS user cannot log in and the device appears offline in Swif, remote password reset commands may not be available immediately.

Try the Swif Admin Account First

Before using the FileVault recovery key, first try logging in with the Swif admin account and use it to reset the affected user’s password from macOS.

This approach is recommended when:

  • The device is online or recently checked in

  • The Swif admin account exists on the device

  • The user is locked out of their own account

  • You want to avoid using the FileVault recovery key unless necessary

Find the Swif Admin Password

In Swif:

  1. Go to Device Management

  2. Open Device Inventory

  3. Select the affected Mac

  4. Go to Accounts

  5. Find the Swif admin account

  6. Click View Password

Use this password to log in to the Mac as the Swif admin user.

Reset the User Password in macOS

After logging in with the Swif admin account:

  1. Open System Settings

  2. Go to Users & Groups

  3. Select the affected user

  4. Click Reset Password or Change Password

  5. Set a new password for the user

  6. Restart the Mac and confirm the user can log in

Notes

  • If the Swif admin account cannot log in or the Mac remains locked at the FileVault screen, use the FileVault recovery key method instead.

  • The Swif admin password should only be shared through approved secure channels.

Using the FileVault recovery key

If the Swif admin account cannot log in or the Mac remains locked at the FileVault screen, use the FileVault recovery key method instead.

In this situation, the user can reset the FileVault unlock password locally by using the FileVault recovery key. Swif stores the recovery key for encrypted macOS devices so admins can securely retrieve it from the device record.

This is useful when:

  • The device is offline

  • The user is locked out at the FileVault login screen

  • A temporary password does not work

  • Remote password reset commands cannot be delivered

  • The user needs immediate access to the Mac

How This Works

FileVault protects the Mac before macOS fully loads. If the user cannot unlock the device with their current password, macOS allows password recovery using the FileVault recovery key.

Swif admins can retrieve the recovery key from:

Device Management → Device Inventory → Select device → Security → Encryption → Recovery Key

Once the user enters the recovery key on the Mac, macOS allows them to create a new password and regain access.

Steps for Admins to find the FileVault Recovery Key

1. Confirm the Device Is Encrypted

In Swif, open the affected device:

  1. Go to Device Management

  2. Select Device Inventory

  3. Open the affected Mac

  4. Go to the Security tab

  5. Check the Encryption section

The device should show:

Encryption status: Encrypted

2. Retrieve the FileVault Recovery Key

In the same Security tab:

  1. Locate Recovery key

  2. Click View

  3. Copy the recovery key securely

Only share the recovery key through an approved secure channel.

Steps for the Device User to use the FileVault Recovery Key

1. Click the Question Mark Icon

At the FileVault login screen, click the ? icon next to the password field.

The Mac should show a password recovery option.

2. Choose Recovery Key

Select the option to reset the password using the Recovery Key.

The screen may say:

Enter your recovery key to unlock the volume

3. Enter the FileVault Recovery Key

Enter the recovery key provided by your administrator.

After the recovery key is accepted, macOS will allow you to reset the password.

4. Create a New Password

Create a new password when prompted.

After the password reset completes, use the new password to log in to the Mac.

Example Admin Message to the User

You can send the user a message like this:

Your Mac appears to be offline, so we may not be able to reset the password remotely right now.  At the login screen, click the ? icon next to the password field, then choose the option to reset using a recovery key.  I will provide the FileVault recovery key securely. After entering the recovery key, macOS should let you create a new password and log in.

Notes

  • This process works only if FileVault is enabled and Swif has escrowed the recovery key.

  • The device does not need to be online for the user to enter the FileVault recovery key locally.

  • The recovery key should be treated as sensitive security information.

  • After the user logs in successfully, confirm that the device reconnects to Swif.

  • If the user recently changed their password through an identity provider, the FileVault password and macOS login password may have become out of sync.

Troubleshooting

The Recovery Key Does Not Work

Check that:

  • The recovery key belongs to the correct device

  • The key was copied exactly

  • The user is entering the key at the FileVault recovery screen, not a standard macOS login prompt

If the recovery key still fails, the device may require additional recovery steps through macOS Recovery.

The Device Still Shows Offline in Swif

After the user logs in:

  1. Confirm the Mac has internet access

  2. Ask the user to keep the device powered on

  3. Wait for the device to check in with Swif

  4. Refresh the device details page

The User Can Log In but Still Sees Password Prompts

The FileVault password and macOS account password may be out of sync. Ask the user to restart and confirm whether the new password works at the FileVault login screen.

If the issue continues, send a message or schedule an appointment with Apple Support.

Related Articles
How to Reset a Device Password
Apple FileVault Policy
How to fix the “Secure Token could not be activated for the Swif admin account. Please check your password.”
FileVault is turned ON on the Mac but Swif still shows “UnEncrypted”
FileVault Password Synchronization on macOS
Did this answer your question?