Apple: SSH and FileVault
17 hours ago
- #macOS
- #SSH
- #FileVault
- When FileVault is enabled, the data volume is locked until an account is authenticated with a password.
- OpenSSH in macOS stores configuration files in the data volume, making usual authentication methods unavailable during boot.
- Remote Login allows password authentication via SSH to unlock the data volume remotely.
- After unlocking, macOS disconnects SSH briefly to mount the data volume and start dependent services.
- This feature was introduced in macOS 26 Tahoe.