OS X 10.7 Lion + OWC Data Doubler (SSD + HDD) + Filevault Encryption

I just picked up a new Macbook and wanted to share my experience with getting Lion and Filevault working with the OWC Data Doubler.

The Data Doubler1, my dear reader, is a frame with a SATA connector that fits in place of the internal optical drive (The floppy of the ’10’s!). It holds any 2.5″ hard drive like a normal HDD bay would. Why would you want to do this? Well you get the speed of a SSD and the capacity of a HDD at the cost of not being able to read/write DVD’s and CD’s.

My setup was as follows:

SSD
OS X and Applications on partition 1
Windows 7 via Boot Camp on partition 22

HDD
OS X User directory (Documents, Movies, Music, Photos, etc.)

Note: I wasn’t that interested in encryption, but I’ve included instructions never the less. I played with it and found it to be limiting.

 

Ingredients

I purchased the Macbook with the upgraded 128GB SSD ($90 increase over stock), nabbed an inexpensive traditional HDD on Newegg (500GB WD 7200 RPM Scorpio Black) and picked up the Data Doubler from OWC. The Data Doubler came with a nice little tool kit for opening the Macbook. I followed the always handy guide over at iFixit to take it apart.

If you’re also thinking about upgrading your RAM (Never buy from Apple, pick it up cheaper from Crucial or else ware.) now is a good time to do it as you’ll have the case open and RAM exposed.

 

Note on Boot Camp

First, don’t remove the optical drive just yet! At least, if you want to install Boot Camp and to run Windows you’re going to run into trouble. Once the optical drive is removed and if you try to use an external drive to install Windows you’ll get a blinking cursor upon boot and won’t be able to continue the install.

Note: These directions are assuming you’d want Boot Camp on the SSD. If you’re looking to have Windows live on the HDD,  you’d have to put the HDD in an external enclosure and install from the internal optical drive.

 

Setup a Secondary Account

Your first step is to boot into Lion and setup an account. This account should not be the name of your primary account, but an admin account you can use for…administrative purposes.

If you’re looking to install Windows, launch the Boot Camp Assistant, step through the guide, partition a chunk of your SSD/HDD for Winders’ and install.

Once complete you should be able to install the Data Doubler. I suggest putting the HDD in the internal hard drive bay and the SSD in the Data Doubler. The optical drive bay that the data doubler will occupy does not have the sudden motion sensor that the default hard drive bay would. SSD’s don’t need the sudden motion sensor – traditional hard drives do.

 

Without Encryption

That new (and large) HDD you’re going to store all of your stuff on probably didn’t come formatted. Open Disk Utility and Erase the drive/partition. Use “Mac OS Extended (Journaled). Give it a good name. I called mine “Macintosh HDD”.

So now boot into OS X, login to your admin account and setup a new user account. This will be your day-to-day account with all of your documents, music, etc. Open System Preferences, select “Users & Accounts” and click the little plus button toward the lower left. (You may need to unlock the control panel with your admin password.)

Once you create the user via the System Preferences, “control + click” on the account and select “Advanced Options…”.

From here you can select where the “Home directory” lives. I pointed mine to a manually created folder on the HDD under “/Users/username”.

Now you should restart, login to your new day-to-day account and get to work!

 

With Encryption

If you want to encrypt just the SSD, go right ahead and use Filevault. Be warned however that Boot Camp doesn’t appear to work nicely with the full disk encryption.3

The GUI for Filevault does not support encrypting secondary or external drives. To encrypt the HDD with all your documents, boot into OS X , login to your secondary admin account and launch Disk Utility. You’ll want to erase the HDD and set it up as “Mac OS Extended (Journaled, Encrypted).

Note: You can also do this via the command line. Open Terminal and run “diskutil list”. Make note of the IDENTIFIER for the HDD. Then run “diskutil cs convert diskidentifier -passphrase yourpasswordhere” (If you don’t provide a password you’ll be prompted to do so. Be careful when typing!)

Change your mind about encrypting that secondary hard drive? Use “diskutil coreStorage revert diskidentifier”. Disk Utility will then decrypt the drive. This might take some time, so to check the progress type “diskutil coreStorage list”. Look for the line mentioning “Conversion Status” to see how far along the encryption or decryption is.

 

A Note on Encryption and the Keychain

After encrypting the HDD and trying to login to the day-to-day user account (that lives on the HDD) I would get an error and not be able to login. I could login fine with the secondary admin account as it lives solely on the SSD. Apparently this is a bug (or feature!) with how the password for the encryption is stored in the keychain. The secondary admin account has access and doesn’t rely on the password to mount its user directory. The day-to-day account does rely on the password to decrypt the HDD, but doesn’t know the password (as it’s stored in the keychain of the user that created it.)

The solution is to login to the secondary admin account and run this utility. It’s called Unlock and performs magic to allow the system to authenticate the HDD upon boot, not user login.

 

Conclusion

At 1,000 words this is probably my longest blog post – ever. I hope it helps those brave few who want to turn a Macbook Pro into a super-charged Macbook Air. Well, kinda. The power of the SSD, large screen real estate and superior graphics! It’s ALIVE!

Thanks to the chaps and chapettes in the following communities for their assistance in figuring this out.

MacRumors

Apple Support Communities

StackExchange’s Super User

 

Update: After this was posted this hint showed up over on Mac OS X Hints. There might be a few nuggets of wisdom for you there regarding FileVault and secondary drives.

Update 2: Hello Googlers. There’s been another great hint shared over at Mac OS X Hints that might prove useful to those wanting to encrypt the HDD where your user data resides.

Footnotes

  1. A competitor to the Optibay. I chose the OWC solution due to the cost and that I’ve always had a good experience with them in the past.
  2. This was the plan. I ended up not installing Windows as I had already removed the optical drive and did not want to put it back in just to install Windows. I ended up part ironing the HDD and installing Windows 7 there. That partition is, obviously, not encrypted via FileVault.
  3. It’s a trade off. Both the SSD and HDD encrypted with no Windows or the SSD encrypted and the HDD not encrypted with Windows installed.

18 thoughts on “OS X 10.7 Lion + OWC Data Doubler (SSD + HDD) + Filevault Encryption”

  1. Cool. I was thinking the same thing. Did you notice any significant slow down in boot/shutdown with the SSD+HHD verses just having the SSD? I move around a lot and depend on the near instant on/off aspect of the SSD.

  2. Mike,
    No noticeable slow down. Even if I leave a few apps open and put the Mac to sleep it’s quick. I’m guessing here, but I think when the computer shuts down most of the work is being done by the OS – which happily lives on the speedy SSD.

  3. Pingback: FileVault
  4. I’ve been thinking about doing something very similar. However, I’ve heard if you install the SSD with boot into the optical bay, there are issues with the MBP waking from sleep, or going to sleep automatically. Have you had these issues?

  5. I just finished installing the OWC Data Doubler w/SSD 128GB and 750GB HDD. The problem is my Apps total 92GB which means only 12GB left on the SSD.

    Is this enough for OSX?

    1. 12GB is cutting it close, but you should be fine. OS X really starts to crawl when you have less space than the amount of RAM. (It uses empty space on the hard drive as swap space and for the sleep image. If you have 8GB of RAM, but less than 8GB of hard drive space you might see problems.)

      If you’re rocking a SSD with Lion, I suggest turning off the sleep image. It will save you space on the hard drive equal to the amount of memory you have, but you’ll loose the ability to put your Mac into a deep sleep state. Not a big deal as Lion autosaves most documents and the boot up time is negligible.

  6. Does it get hotter than when it didn’t have the data doubler? I have a new macbook pro with the same setup as you and it’s really really hot, burning hot, and it’s really making me angry. Thanks

    1. I haven’t noticed any heat increase. In fact this model Macbook Pro runs much cooler than my last. Which, admittedly was the first ten 1.8 Core Duo, known to run hot.

  7. I have a question about this. I have the same setup in hardware, a 256gb OWC SSD and an internal 1TB Western Digital drive with all my documents on it, music/photos/downloaded files/odds and ends. I already have Windows 7 installed on the SSD as well as Lion 10.7.3. My User folder is on the SSD, not on the other HDD, so it’s a bit of a setup difference. I would like to know if I can encrypt my internal HDD OS X partition that’s split somewhat evenly between OS X and W7 without having to move almost 600gb of data off to another drive, reformat as a secure partition, and then move it back to take advantage of FileVault 2 encryption on that partition. Is it possible to do an in-place encryption on that Western Digital HDD OS X partition with all of my data WITHOUT having to reformat it? I want to have both the OS X partition on the SSD and the HDD encrypted with FV2 without having to move all that data off the HDD OSX partition. Is this possible? All the writeups I’ve seen about encrypting a HDD partition that isn’t the boot partition have shown how to do it with the User folder on that HDD instead of the boot drive, I’m wanting something a little different. Any help would be GREATLY appreciated because I want to encrypt both partitions and use a different encryption on my Windows 7 stuff. Also, are backups easy with FV2 enabled, or is there some sort of gotcha when you have to restore from a Time Machine backup? I can stand to not worry about my Windows 7 stuff because it’s only used for gaming and really nothing else, but I’d like to keep any info that has made it on there as safe as possible. Thanks!

  8. Regarding the external dvd drive and blinking cursor thing, do you know if that happens if you try to install via USB?

    I found a guide somewhere that allows you to trick the Macbook Pro into installing from USB like the Macbook Air does.

    Aside from that, I don’t really want Windows 7 on the SSD. Is it possible to install it on the HDD?

    1. I hadn’t tried that. I suppose it could work, assuming you could trick the Windows installer into working via a USB thumb drive.

  9. Just want to say “thanks!” for this posting. Recently took the plunge with a data doubler with 960 GB drive for the double and a 480 GB for the boot drive. Blindly encrypted both of the drives off the bat and proceeded to move /home dir to 960 GB drive. Then the funkiness started… lol. Noodled around for a while with permissions and made desperate stab with aliases. Home drive decrypted occasionally–sensed this was the problem. Found your blog, grabbed a copy of Unlock, and we are cooking with gas!

    You saved me some time and energy from having to perform a drive wipe/decrypt/restore and from being in the position of being only half encrypted and/or a kludged/split home-drive. Will check out the updates to fine tune.

    Thanks again

Comments are closed.