Apple - Change OSX encryption filevault password to match login pass
Just bumped into this issue too, if you change password via
Settings > Users & Groups > Change Password ...
you will be prompted twice, once for the File Vault original password and again for the new account password. However if you change the password via
Settings > Security & Privacy > Change Password ...
both will be updated, noting that you will be required to enter the account password not the File Vault original password, so you can reset the File Vault password by entering your new password three times.
It is supposed to be automatic, however I have encountered this during the Yosemite upgrade. I'll explain how I fixed it.
For the sake of discussion, I'll use AUserName to refer to the user whose password is out of sync.
Generally speaking it's quite simple. Remove AUserName from the list of users that can unlock this disk, then add them back.
IMPORTANT, if you do not have multiple users who can unlock the disk, add one now, or have the recovery key handy.
Here's what you do:
- Click the Finder icon in the Dock
- Click Applications
- Double click Utilities
- Double click Terminal
In the terminal window, type the following:
sudo fdesetup remove -user AUserName
You'll be prompted to enter your password.
This removes AUserName from the list of unlock users. Next,
- Click the Preferences icon in the Dock
- Click the Security icon in preferences
- Click the FileVault tab
There should be a warning message that "Some users are not able to unlock the disk" - Click the "Lock" icon at the bottom of the window and supply administrator credentials.
- Click the Enable Users button
- Click the Enable User next to AUserName
- Click Done
I had similar problem. And didn't even know that was a problem. I thought it is standard to have one pass to unlock disk and another to login to the system. As to why during unlock there was unknown username and avatar I thought it was a bug which appeared after one of the osx major updates.
It turned out that my main admin user was not authorized to unlock the disk and some random/legacy user I created for test a year ago was authorized. So I went to System Preferences->Security&Privacy->FileVault and authorized my main user to unlock.
Strange is that when I went to Users&Groups to delete that random user it was not not on the list like it haven't existed (this is one of reasons that I thought before that everything is ok). So I created a user with the same name and only then could delete it.
Now I can unlock disk and login with just one user and enter password just once.