Hi guys, I have a question because I’m really confused. I’ve enabled FileVault in a bunch of computers. Some computers have a partition called “/Volumes/Macintosh HD - Data” or even “ … Data - Data” or other names. What I’m trying to achieve is to get all the MacBook fully encrypted. Despite FileVault is enabled, those partitions report as “FileVault: No”. I don’t know if FileVault encrypt the whole container or volume and I have to consider as “encrypted”. I have other Macs with volumes that are reported as “FileVault: Yes” so probably something is not working as expected or I’m missing something. Any help?

i can't speak to macos internals or whether or not filevault is correctly configured on your machine but you can use this to at least surface the information from the mounts + device_encryption tables to return it all in a neat format:

SELECT m.*, de.encrypted, de.encryption_status, de.filevault_status FROM disk_encryption de JOIN mounts m WHERE device = name;

Data is the r/w volume where apps and users go, the other volumes you should think of as implementation details that are 'sealed' (from Apple's perspective' and can't be tampered, so

@FG thanks for your query, but I also see the problem running the commands directly in the terminal. @allister I understand that, but, if I run diskytil apfs list and I see that “/Volumes/Macintosh HD - Data” said “FileVault: No”, that means that the disk is not encrypted right ?

% fdesetup status
FileVault is On.

fdesetup

will tell you if the Data volume connected to the currently booted OS is encrypted, if you only want the boot volume

SELECT m.*, de.encrypted, de.encryption_status, de.filevault_status FROM disk_encryption de JOIN mounts m WHERE device = name AND path = "/";

should work

Ey allister thanks for all the information, really appreciate your help 🤗