In recovery mode, I cannot unlock Filevault2-encrypted Macintosh HD

Type the password using a "qwerty" equivalent keyboard.

So if you password is, say, "mac" on an azerty keyboard, then you should type "éqc" which is the equivalent of the "mac" keys on a "qwerty" or "qwertz" board.

If you use numbers, then on the azerty keyboard you should simply press the number keys without "shift", as on a qwerty/z keyboard there is no shift to access numbers.

Hi

I'm able to unlock using terminal command `diskutil coreStorage unlockVolume` gets logs on terminal like unlock successfully.

But when I proceed it says `The operation couldn't be completed. Permission denied `

Can you please help me on this.

I'm installing macOS Sierra .

The object of Filevault is so that no access is possible via any other means except the secure path laid out with a fully running OS X to ensure your data is secure. This is a very secure and limited access state intentional to supply the security provided.

The Lion Recovery Partition is just a tiny program on a partition, the window asking for your password shouldn't have appeared at all.

If the Lion Recovery Partition allowed a unlocking of a Filevault drive, means that that code could be easily cloned, altered and used to crack any Mac with Filevault with a simple USB key. The government snoops would be screaming if they knew this was possible.

Filevault is a complete waste of time and effort for most users, it hogs CPU cycles, slows down one's machine and disables recovery options if OS X fails to boot as one can't decrypt the image and simply recover files using a alternative means (like Firewire Target Disk Mode for instance)

It's better for most users to leave Filevault alone and either use a Iron Key or individual file/folder encryption software on just the items they need.

This way if something goes wrong, the files are either off the machine or the drive can be accessed and the encrypted files/folders transferred to another Mac, decryption software installed and the correct password used to decrypt the files.

Military and Government parnoid level total drive encryption is overkill for most regular users needs as they don't access super secure networks that require it. And since most all of those super secure networks are not on the internet, makes it inaccessible to most users anyway.

Most users just need a folder or two encrypted, with the ability to move them to another comptuer, not their entire drives encrypted in a unmovable state.

Also the advatage of having something like a Iron Key is that one has the files off their computer and can easily and quickly dispose of the Iron Key in a rapid manner smashing it with a hard large rock for instance and spreading the pieces around at random, or burying it in the ground for another, try doing that with a computer. 😝

As if you don't already know, Apple is vulnerable to government influence, they certainly have complete access to Filevault no matter what Apple says.

A four character password?, heck I could crack that on my Mac in about 5 minutes.

So if your not super serious about protecting your data, just want to keep snoops at pay, do the file/folder encryption or Iron Key method instead of Filevault, don't be sorry later like your sorry now that you can't repair your drive permissions or access your drive if OS X fails to boot.

ds store, if I can piggy-back on this thread...

I hear you regarding regular users probably shouldn't use FileVault for the reasons you articulate. However, since I'm new to Lion and want to understand FV and encryption, I've been experimenting and have some questions, if you would be so kind to respond.

I started with an external drive with clean SnoLo sys 10.6.8, formatted Extended (Journaled), paid my $29.99, downloaded Lion and installed, then cloned (super duper) to internal drive WDC 750GB (not Apple original). Booted no problems.

As a test I tried to encrypt but couldn't. Error message said wrong format, so reformatted Extended (Journaled, Encrypted), entered disk password, copied security key, re-cloned, rebooted the internal and logged in. No problems.

Tried to turn off encryption and got this error message: "Filevault failed. The target disk isn't eligible for reversion because it wasn't created by conversion or it is not part of a simple setup of exactly one logical volume and one physical volume".

As a test I tried unsuccessfully to boot into Recovery partition (cmd-R) but never could get recovery volume listed as a volume option. Note - Disk Utility confirmed encrypted volume, also I understand encryption not possible if no recovery volume present.

Any ideas what I'm doing wrong, thoughts?

TIA

Hi, I guess the two previous comments weren't really helful for solving your issue.

I was also affected by this problem, the reason is that I use an azerty keyboard and the password prompt dialog has a bug that makes it ignore your keyboard layout, so if your password has characters like a,z,q,w or digits you'll have to substitute letters to match a qwerty layout (a - q, z - w, typing numbers without holding the shift key)

Cheers,

F.

I have a similar issue, or maybe it's the same one. No solution or advise up to this day.

https://discussions.apple.com/thread/3575180?answerId=17246113022#17246113022

But how will we open terminal ?

I tried this, there's no more uuid, only disc volumes and names.. is there any other work around on this?

This is for mountain Lion recovery

This bug is still there in Mavericks 10.9.2! Unbelievable. I start disk utility in recovery mode, select unlock disk, enter the *correct* passphrase (yes, I know the keyboard layout issue, it always switches back to US, another still (!!) unfixed bug), not accepted. Workaround in the terminal as suggested.

@ds store: The code to unlock the disk could just as well be open source, encryption/security is not based on open or closed source/algorithms/techniques, but on the math behid it and the passphrase, that determines the security. Also, there is a very good use case for full disk encryption for most users. With full disk encryption you don't have to worry about what to encrypt and what not to encrypt, don't have to worry about /tmp etc., simply everything all is encrypted. And the moment you have a mobile device like a MacBook, you do want encryption.

So Apple better makes sure all things also work fine with full disk encryption enabled. "People should not use it" is no excuse for anything.

And still there in 10.9.4. Just wasted a precious hour or two myself on this one.

i also try terminal - diskutil corestorage unlockVolume (my UUID),

but he said- this is not your volume id

so what can i do now .....

Same issue here on macOS Sierra. I had this problem since while now and I could find a solution.

Also, Apple support could not help much as they don't recognise it as a bug and they say it must work.