macOS 10.13 17A362a: Changing local account passwords may cause new login keychain to be generated
| Originator: | rtrouton | ||
| Number: | rdar://34613608 | Date Originated: | 23-Sep-2017 04:28 PM |
| Status: | Open | Resolved: | |
| Product: | macOS + SDK | Product Version: | 10.13 17A362a |
| Classification: | Serious Bug | Reproducible: | Always |
Summary: Whenever there is a mismatch between a local user’s login password and the keychain password, macOS High Sierra is automatically renaming the old keychain to login_renamed_#.keychain-dc and creating a new keychain without any user interaction or prompting. Steps to Reproduce: 1. Open Keychain Access 2. Under the Edit menu, select "Change password for keychain 'login'..." 3. Change the password of the keychain to be different from the account's login password 4. Log out of the account 5. Log back in Expected Results: Get prompted at the login window to update the keychain with the new password. Actual Results: Existing login keychain is renamed and new login keychain is created. Version: 10.13 17A362a Notes: Other ways to reproduce: 1. Logging in as another account and using the `passwd` command on the command line to change the local account's password. Result: New login keychain 2. Logging in as another account and using the "Users & Groups" preference pane's "Reset Password" function to change the local account's password. Result: New login keychain.
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!