Keychain Password Mismatch with AD account creates new keychain
| Originator: | JonnBD | ||
| Number: | rdar://34081290 | Date Originated: | 2017-8-24 |
| Status: | Closed | Resolved: | 2017-9-28 |
| Product: | macOS | Product Version: | 10.13 (17A352a) |
| Classification: | Bug | Reproducible: | Yes |
This seems to be fixed with the release version, prompt now displays "Create new keychain" and "Update Keychain Password", thankfully omitting the "Cancel" button. Whenever there is a mismatch between a user’s AD login password and the keychain password, macOS is automatically renaming the old keychain to login_renamed_#.keychain-dc and creating a new keychain without any user interaction or prompting. To Reproduce: 1. Log into the Mac with an AD account 2. Either change the directory account’s password on another machine/in the directory (Not on the Mac), or change the login keychain password. 3. Reboot the Mac and log in with the new password
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!