Resetting the password in Recovery Mode will grant the user a SecureToken.
There are 2 options for this to work, and they will be on Step 3
- Knowing an Admin user password (Could be a temporary Admin created via Go-Live and cannot be the same user you're trying to reset the password for)
- Reset and change all the passwords on the device without needing Admin credentials (but they will create the password for any admins on the device).
Complete step 3a or step 3b, not both.
Step 1
With your, Mac turned off, press and hold the Command and R keys on your keyboard, then press the power button. Hold in Command and R until you see a progress bar show up below the Apple logo.
Step 2
Once the device boots into Recovery Mode, open Terminal from the Utilities dropdown and type in resetpassword, and click enter. After this click on the window behind the Terminal window.
Step 3A
Select the temporary Admin user you know the password for, enter the password, click Continue. Now select the user you'd like to change the password for and click Next. From here enter in the password you'd like this user to have and click Next and then Restart.
Step 3B
Click Forgot all Passwords and set a new password for every user on the device, making a note of the password you set for your user. (The other passwords can be anything and reset via Go-Live as long as you're okay with them not being able to log into them via the FileVault login page). Then click Restart
