I Have an APFS volume high Sierra install and for some reason it rebooted/went to sleep over night. Now it’s asking for a ‘disk password‘ and won’t let me in.
1:05 It turns out you don't need a password to log in to a locked Apple device using - just the username 'root.' By heading to your device's System Preferences, under Users & Groups, you can click on the lock and get hit with a prompt asking for a username and password to change settings.
Then, instead of entering a password, you can type in 'root' for the username and leave the password field empty. After clicking unlock several times, it should eventually open up, no passwords necessary. Lemi Orhan Ergin, the founder of Software Craftsmanship Turkey, discovered the security flaw and tweeted it out to Apple Support on Tuesday. CNET independently confirmed this security flaw exists. 'We are working on a software update to address this issue,' an Apple spokesperson said.
'In the meantime, setting a root password prevents unauthorized access to your Mac. To enable the Root User and set a password, please. If a Root User is already enabled, to ensure a blank password is not set, please follow the instructions from the 'Change the root password' section.' The simple exploit means anybody with physical access to your MacOS High Sierra device can log in on your computer, no matter how secure your passwords are. Amit Serper, a security researcher from Cybereason, demonstrated that the bug works even on the login screen after restarting the computer. A demonstration of the security flaw. CNET MacOS High Sierra was also plagued with a password issue when it launched, after a former NSA hacker showed that he could.
There's a workaround for the 'root' flaw until Apple fixes it. You can turn guest users off, or change the root password from your directory utility, as. Kurt Opsahl, the, recommended creating a username 'root' and setting a password to solve the blatant issue. First published Nov. 28, 12:44 p.m PT. Update, 1:15 p.m. PT: Adds details about how to fix the issue as well as what other things the 'root' bug can access.
Update, 3:25 p.m. PT: Adds a statement from Apple.
Hello and welcome to Apple Support Communities, Alex Ander! It looks like you're being prompted to enter in your user account login information twice after powering up your Mac. I know it's not ideal to have to enter in the same login information more than once, each time you start your computer. I'm happy to help you get this sorted out. The reason you're seeing two login screens is because of FileVault. When FileVault is enabled, you're first prompted to enter in your login information to unlock the disk at the EFI Login Window, and then you're prompted to enter in your login information again to go into your actual user account.
An easy way to get around this is to enable automatic login for FileVault. You can find the steps on how to do that here: OS X: Thanks for using Apple Support Communities. Hello and welcome to Apple Support Communities, Alex Ander! It looks like you're being prompted to enter in your user account login information twice after powering up your Mac. I know it's not ideal to have to enter in the same login information more than once, each time you start your computer.
I'm happy to help you get this sorted out. The reason you're seeing two login screens is because of FileVault. When FileVault is enabled, you're first prompted to enter in your login information to unlock the disk at the EFI Login Window, and then you're prompted to enter in your login information again to go into your actual user account. An easy way to get around this is to enable automatic login for FileVault. You can find the steps on how to do that here: OS X: Thanks for using Apple Support Communities.
File Vault is not an application. It is a security feature that encrypts the contents of your drive. I stay away from it, because for me the risk of losing access to my data is greater than the risk of someone else getting it. If that is your case, you should turn if off. Only you can make that call, of course. Before you do anything: you do have a full backup of your system, don't you?
File Vault is turned on or off in System Preferences-Security & Privacy-File Vault Note that decrypting or encrypting a full drive may take a long time, and your system may become slow while this is taking place. I had the same problem after upgrading to Sierra, and I found the solution here: if you change password via Settings Users & Groups Change Password. You will be prompted twice, once for the File Vault original password and again for the new account password. However if you change the password via Settings Security & Privacy Change Password. Both will be updated, noting that you will be required to enter the account password not the File Vault original password, so you can reset the File Vault password by entering your new password three times. This worked for me, and now I don't have to enter two passwords when I restart. Hi Apple Support Community, The double login prompts never occurred in El Capitan, why has this resurfaced in Sierra?
Is this a deliberate function that had broken in El Capitan? The initial Sierra build was also not presenting the double logins with Filevault enabled. This only started happening since mid-April. Filevault is a must for our business, however the double login prompts are causing our highest executives to want to move from their Macbooks back to Windows machines. Disabling Filevault is not a solution, nor is automatic login as these create security vulnerabilities. The workarounds have only partially resolved the issue.
Now we've got it down to only double prompting if the laptop wakes from sleep. After encryption completes, setting the password for the local Administrator account under Security & Privacy General Tab Change password seems to have fixed the issue when initially logging in, but if the Macbook hibernates/sleeps the user is prompted for their password twice when logging back into the laptop. Please let me know what data I can provide to help truly resolve this issue? Apple Footer. This site contains user submitted content, comments and opinions and is for informational purposes only. Apple may provide or recommend responses as a possible solution based on the information provided; every potential issue may involve several factors not detailed in the conversations captured in an electronic forum and Apple can therefore provide no guarantee as to the efficacy of any proposed solutions on the community forums.
Apple disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the.