How to recover file vault encrypted network accounts
Each machine we provision holds the same master password. However, when using network mobile accounts, the option to reset the password with the master password at login is not an option as it is with local accounts. My fear is that my users may at some point forget their password, and while we can reset it in our openLDAP system, the machine will still require the old password to convert the filevault encryption.
In addition, I am also aware that you can mount the .sparsebundle with the hdid command in terminal, but this still requires (i believe) the users original password to mount.
Thank you in advance.