Mac computers (laptops and desktops) running OS X are most commonly encrypted by FileVault 2 (the native Mac OS X encryption software) or PGP Desktop (a third-party encryption software by Symantec).
First, check which application is on your device by clicking on the Apple icon in the upper-left corner of your screen and going to System Preferences, and your Applications folder. The applications may be listed in either of these locations.
Once you have located the application, follow the steps in the appropriate document (pdf) below to find out if your computer is encrypted:
Already encrypted? Skip to Step 5.
To use your personal device for University business, it must meet all requirements and standards of both the University and the UCLA Health Sciences. Devices must meet five major requirements to be acceptable for University business usage (not comprehensive).
Note: Please read all UCLA Health Sciences policies to ensure your device meets all the requirements.
UCLA Health Sciences disclaims any responsibility for loss of data that results from the use of encryption routines.
Before attempting to encrypt your computer, please read and follow these best practices to prepare for encryption.
FileVault helps prevent unauthorized access to documents and other important data stored on your startup disk.
You can use FileVault full disk encryption (FileVault 2) to help prevent access to documents and other data stored on your startup disk. FileVault uses XTS-AES 128 encryption. To use this feature, you need OS X Lion or later, and a working OS X Recovery volume on your startup disk.
Please back up all files before encrypting your computer!
When you first set up your Mac, you might be asked if you want to turn on FileVault. You can check to see if FileVault is turned on in the Security & Privacy pane of System Preferences. If the option is ‘greyed’ out, click on the padlock in the bottom left corner of the window and enter your password to unlock.
If FileVault is turned off, you can use these steps to turn it on:
If you enable FileVault on a Mac with more than one user account, you're asked to identify which users can unlock your startup disk as part of setup. Click Enable next to a user name to let that user log in to your Mac at startup. Then, enter the password for that account.
Users that you do not enable cannot unlock the startup disk. These users are not able to use your Mac until after an enabled user logs in.
Any new user accounts you create after you turn on FileVault are automatically enabled.
When you enable FileVault on your startup disk, you can choose an option to help you later if you forget your password:
Your password and Recovery Key are very important. If you don't have access to your password or Recovery Key, you won't be able to log in or access any of the documents or other data stored on the startup disk of your Mac.
After you set up FileVault, you are prompted to restart your Mac. After restarting, a login screen appears. Select your account name and enter your password to continue. This unlocks your startup disk and takes you to your desktop.
When FileVault is enabled you cannot log in automatically. A password is always required when you start up your Mac so that OS X can unlock your startup disk.
The first time you log in after turning on FileVault, encryption of your startup disk begins.
When you turn on your Mac, you are prompted to select your user account and then enter your password. This unlocks your startup disk and automatically brings you to your desktop.
If you forget your password, follow the onscreen prompts that appear at the login screen to reset your password using your Apple ID or iCloud account. In OS X Yosemite, your password is automatically stored in iCloud if you turned on FileVault when you first set up your Mac.
If you set a Recovery Key, you can also enter it as your login password if you don't know the right password to log in.
In OS X Yosemite, you can also reset the login password you use with FileVault by using the Reset Password Assistant:
After your device has been encrypted, you must register it here .
It is your responsibility to ensure your device is verifiably encrypted. To validate that your computer is encrypted, you must register your computer in the UCLA Health Sciences IT Organization inventory.
To register your device in the inventory, please click on the link below. Before registering your device, please read all disclaimers and instructions. You must have a UCLA Logon to register a device.