Understanding secure tokens
On Mac computers with certain hard drive formats (macOS 10.13 or later), encryption keys are not created until a user is created, a password is set, or the first user logs in. This implementation is known as a secure token. For devices with macOS 11 or later, the system automatically grants a secure token to the very first user created on the Mac. This is typically the Colby ITS support account. Subsequent user accounts that are logged into the computer should also be granted a secure token.
Volume Ownership
On Mac computers with Apple silicon processors (computers manufactured after 2021), users with a secure token are considered volume owners. Being a volume owner allows a user to authorize software updates, change start up security policies, and perform other high-level computer commands.
In some instances, a Colby user will not be granted a secure token and thus given volume ownership. The most common hurdle this prevents is not being able to perform Apple macOS updates successfully.
If you are unable to perform Apple macOS updates because it won't accept your password and or Colby ITS has requested action by you regarding a Secure Token issue, please contact the support center at 207-859-4222 for assistance to remedy the issue.