Peony LogoPeony

How to Password Protect Files on Mac: Complete Free Guide for 2025

Deqian Jia
Deqian Jia
Connect with me on LinkedIn! I want to help you :)
Mac SecurityFile ProtectionmacOS EncryptionPassword Protection

Mac users handle sensitive files daily, yet 52% never enable FileVault or use encrypted disk images, creating data exposure risks. According to Apple security research, encrypted Macs prevent 98% of unauthorized data access after theft or loss.

Peony enhances Mac security: protect files beyond local device, track access remotely, secure cloud sharing, apply watermarks, and maintain access from any device. Purpose-built for secure Mac file sharing.

Here's your complete guide to password protecting files on Mac in 2025.

Mac File Protection Methods

MethodSecurity LevelEaseSharingBest For
Encrypted disk image⭐⭐⭐⭐⭐⚠️ Medium⚠️ Mac usersLocal file container
FileVault⭐⭐⭐⭐⭐✅ Easy❌ N/AFull disk encryption
Preview PDF encryption⭐⭐⭐⭐✅ Easy✅ YesIndividual PDFs
Peony platform⭐⭐⭐⭐⭐✅ Easy✅ YesCross-platform sharing
ZIP encryption⭐⭐⭐✅ Easy✅ YesFile transfer

Method 1: Encrypted Disk Image (Best for Local)

Using Disk Utility (built-in, free):

Create Encrypted Container

Step 1: Open Disk Utility

  • Applications → Utilities → Disk Utility
  • Or Spotlight (Cmd+Space): type "Disk Utility"

Step 2: Create new image

  1. File → New Image → Blank Image
  2. Save As: Name your secure container (e.g., "Confidential Files")
  3. Name: Volume name (shown when mounted)
  4. Size: Choose appropriate size
    • 100MB for documents
    • 1GB for mixed media
    • 10GB for large collections
    • Can't easily resize later
  5. Format: APFS (recommended) or Mac OS Extended
  6. Encryption: 128-bit AES or 256-bit AES (choose 256-bit for highest security)
  7. Partitions: Single partition
  8. Image Format: read/write disk image
  9. Click Save

Step 3: Set password

  • Enter strong password (16+ characters recommended)
  • Confirm password
  • DO NOT save in keychain if maximum security needed
  • Click Choose

Step 4: Wait for creation

  • Disk Utility creates encrypted .dmg file
  • Mounted automatically first time
  • Shows as volume in Finder

Using Encrypted Disk Image

Mounting (opening):

  1. Double-click .dmg file
  2. Enter password
  3. Volume appears in Finder
  4. Drag files in/out like normal folder

Working:

  • Transparent access while mounted
  • Read/write files normally
  • Applications can open files directly
  • Auto-save works

Ejecting (locking):

  1. Right-click volume
  2. Eject (or drag to Trash)
  3. Files now encrypted and inaccessible
  4. Must re-mount with password

Security notes:

  • Files protected only when ejected
  • While mounted, accessible like normal
  • Always eject when not using
  • .dmg file is encrypted container

Benefits:

  • ✅ Free (built into macOS)
  • ✅ Strong encryption (AES-256)
  • ✅ No size limits
  • ✅ Portable (move .dmg file anywhere)
  • ✅ Transparent use when mounted

Limitations:

  • ⚠️ Requires mounting/unmounting
  • ⚠️ Fixed size (plan ahead)
  • ❌ Mac-only (Windows can't mount easily)
  • ❌ No tracking
  • ❌ No cloud sync built-in

Method 2: FileVault (Full Disk Encryption)

Enable FileVault for complete protection:

Setup Process

Step 1: Open System Settings

  • Click Apple menu → System Settings (or Preferences on older macOS)
  • Click Privacy & Security
  • Scroll to FileVault

Step 2: Enable FileVault

  1. Click lock icon (enter admin password)
  2. Click Turn On FileVault
  3. Choose unlock method:

Option A: iCloud account

  • Use iCloud password to unlock
  • Recovery via iCloud
  • Convenient but ties to iCloud

Option B: Recovery key

  • Generate recovery key (save this!)
  • Store securely (not on Mac)
  • Print or save to password manager

Step 3: Complete setup

  • Click Continue
  • Encryption begins (takes hours, works in background)
  • Mac usable during encryption
  • Automatic restart required

FileVault Features

What it protects:

  • Entire startup disk
  • All user files
  • Applications
  • System files
  • Everything encrypted

How it works:

  • Encryption happens in background
  • Transparent to user during use
  • Password required at boot
  • Protects data at rest

Benefits:

  • ✅ Free (built into macOS)
  • ✅ Complete disk protection
  • ✅ Transparent (no workflow change)
  • ✅ Protects against theft
  • ✅ Meets compliance requirements

Limitations:

  • ❌ Doesn't protect while logged in
  • ❌ No selective file protection
  • ❌ No cloud sync protection
  • ❌ One-time setup only protection

Best for: Laptop protection, theft prevention, baseline security

Method 3: Password Protect PDFs (Preview)

Native Mac PDF encryption:

Process

Step 1: Open PDF in Preview

  • Double-click PDF (opens in Preview default)
  • Or right-click → Open With → Preview

Step 2: Export with encryption

  1. File → Export as PDF
  2. Click Show Details (if hidden)
  3. Check Encrypt checkbox
  4. Enter password (strong, 16+ characters)
  5. Verify password
  6. Choose save location
  7. Click Save

Protected PDF created:

  • Original remains unprotected
  • New file requires password to open
  • AES encryption applied

Benefits:

  • ✅ Free (built into macOS)
  • ✅ Simple process
  • ✅ Standard PDF encryption
  • ✅ Cross-platform compatible

Limitations:

  • ❌ Individual files only
  • ❌ No tracking
  • ❌ Can't revoke
  • ❌ Password shared with file

Best for: Individual PDFs, cross-platform sharing

Method 4: Keychain Password Protection

Secure Notes in Keychain:

Create Secure Note

Step 1: Open Keychain Access

  • Applications → Utilities → Keychain Access
  • Or Spotlight: "Keychain Access"

Step 2: Create secure note

  1. File → New Secure Note Item
  2. Name the note
  3. Paste sensitive text or small file contents
  4. Save

Protection:

  • Encrypted with keychain password
  • Requires authentication to view
  • Syncs via iCloud Keychain (optional)

Limitations:

  • Text only (not file protection)
  • Limited to small amounts
  • Not for documents

Best for: Passwords, license keys, small secrets

Method 5: Secure Platform (Peony) - For Sharing

Cross-platform protection with tracking:

Setup:

  1. Upload Mac files to Peony
  2. Configure security (password, watermarks, etc.)
  3. Generate secure link
  4. Share from any device
  5. Access from any platform (Mac, Windows, iOS, Android)

Benefits:

  • ✅ Cross-platform (Mac, Windows, mobile)
  • ✅ Complete access tracking
  • ✅ Professional sharing
  • ✅ Watermarking
  • ✅ Screenshot protection
  • ✅ Revocable access
  • ✅ Update files remotely

Best for: Business files, client sharing, team collaboration

Protecting Specific File Types

Password Protect Pages Documents

Process:

  1. Open document in Pages
  2. File → Set Password
  3. Enter password (twice)
  4. Click Set Password
  5. Save document

Protected:

  • .pages file encrypted
  • Password required to open

Password Protect Numbers Spreadsheets

Process:

  1. Open in Numbers
  2. File → Set Password
  3. Enter password
  4. Save

Password Protect Keynote Presentations

Same process:

  • File → Set Password
  • Keynote file encrypted

Limitations:

  • Requires iWork apps to open
  • Primarily useful within Apple ecosystem

Batch Protection on Mac

Terminal ZIP encryption:

Encrypt multiple files:

zip -er protected.zip file1.pdf file2.doc file3.xlsx

Encrypt folder:

zip -er protected-folder.zip /path/to/folder

Benefits:

  • Fast batch processing
  • Password-protected ZIP
  • All files protected together

Limitations:

  • Command line required
  • Recipients must extract
  • No tracking

Security Best Practices for Mac

Multi-layer security:

  1. Enable FileVault (baseline)
  2. Use encrypted disk images (sensitive projects)
  3. Password protect individual files (distribution)
  4. Use Peony for external sharing (tracking + security)

Password hygiene:

  • Use Keychain for password management
  • Strong, unique passwords (16+ characters)
  • Touch ID where available
  • Two-factor authentication enabled

Access management:

  • Regular permission reviews
  • Remove old files from encrypted volumes
  • Clean up shared access
  • Audit regularly

Backup:

  • Encrypt Time Machine backups
  • Store recovery keys separately
  • Test backup restoration
  • Multiple backup locations

How Peony Complements Mac Security

Peony extends Mac file protection:

Local + cloud:

  • Encrypt locally (FileVault, disk images)
  • Share securely (Peony)
  • Access anywhere
  • Complete security

What Mac lacks:

  • ❌ Cross-platform sharing
  • ❌ Access tracking
  • ❌ Watermarking
  • ❌ Professional presentation
  • ❌ Remote access management

What Peony adds:

  • ✅ Any platform access
  • ✅ Complete tracking
  • ✅ Dynamic watermarks
  • ✅ Custom branding
  • ✅ Revoke from anywhere

Workflow:

  1. Create files on Mac
  2. Protect locally (disk image) if needed
  3. Upload to Peony for sharing
  4. Professional, secure distribution

Result: Mac's excellent local security + Peony's sharing and tracking.

Conclusion

Mac provides excellent built-in file protection: FileVault (full disk), encrypted disk images (containers), and Preview PDF encryption. While these tools secure local files effectively, platforms like Peony add essential business features: cross-platform sharing, access tracking, watermarking, and professional presentation.

For Mac users sharing files externally, combining Mac's local encryption with Peony's secure sharing delivers comprehensive protection.

Secure Mac file sharing: Try Peony

Related Resources