Home Sync wants to use the Login Keychain

I believe I have a work around. It appears that the OS X is sad when the keychain isn't instantly available to use when you login. I'm guessing the PHD sync process is locking the keychains folder/files when the keychain program is trying to use them. My work around is to create a symlink to a hidden folder in /Users/ for each user to store their keychain. I did this with the network home folder redirection setup included with work group manager. I followed the process here: http://houseofmac.wordpress.com/2010/11/03/os-x-network-home-folder-redirection/ but created a folder called .Keys in /Users/ and configured the mcx settings like this: Everyone needs to have write permissions to the .Keys folder. I tested with the temp folder as described in the initial directions, but the temp file is emptied at reboot which will cause the keychain message to re-appear (once) at login. Now the first time a user logs in to the machine, they will receive a message about the keychain, but it will only happen once. It's not perfect, but way better that being prompted multiple times.

Have a good day,

Chuck

We have approx 30-40 Mac clients and this has been problem for us since upgrading to 10.9.4 on the server and client machines...

Still happening with 10.9.5

I also get this popup regularly as well: NetAuthSysAgent wants to use your "login" keychain

Possible Solution?

I am running OSX 10.9.5 on my MacBook Pro and I had the same problem for a while. I just tried something a second ago and it seems to work. Here it is. Open keychain access and from the edit menu select "change password for login keychain". Use it to change the password to something temporary and reboot. You will be prompted for the new login keychain password. But now, go back to the keychain access again and change the password again to be the same password that you use for logging into the computer. reboot again. It may ask for the login password again. But once you give it and reboot, it should stop asking again.

Sorry, that "changing password idea" does not work anymore. It reverted back to asking for the password all over again after I restarted the computer the third time.

Same problem on 10.10. Deleting the ~/Keychain/JDHKDSF-SKLDJS folders solves the problem for just 1 reboot, but not any further ones. Also, it seems like the preference sync is not happening at login time anymore. Apple, please fix this.

Unfortunately, it seems to be the case for me too, Peter. Because the 10.10 sync does not occur at login (only in background and logout) it does overwrite some preferences, treats them as newer, and so loses the settings. However, having a backup of those preferences, using them to overwrite again, then sync, keeps the worst problem away, but only for a while...

Has anyone got a better workaround?

I just upgraded again the Apple Software (update all) yesterday. Don't know which one did it but the homesync login prompt stopped appearing. The version I have is OS X 10.9.5 (13F34). Did they finally fix the bug?

Don't think it is fixed and it is much worse in 10.10 as others have said. Most fixes including re-installs only fixed it temporarily for me.

I filed another bug report to Apple on it, but the official bug# is 17640337 which goes back to 10.9.4.

Between this kind of stuff and the very sad Mac mini "update", our shop is struggling to justify our Mac servers this year. I am kind of stuck as I need the dual thunderbolt 2 on the new server but I need the quad-core i7 from the old server. Puts me in a bad position of having to look at a Mac Pro quad-core at 3x the cost as a server, which is not as easily reachable, has tons of GPU waste, and draws a lot more power. Very upset at this totally bean counter decision just so they don't cannibalize sales of other products. Yet they are perfectly willing to do it on their iOS products as the iPhones totally cut into iPad mini sales.

Also having this issue on my setup. I have noticed that by disabling Preferences Sync at login, I do not get the prompt to enter the "login" keychain password, so that procedure seems to be the culprit.

But now I have noticed that on logout and background sync stalls when checking the ~/ folder. So preferences sync are not happening at all..

Not sure if this is related but thought it might help! Had the issue with WGM machine bound to AD

In AD home folder of each respective user - that is on the server side - try to browse to Library/Keychains and delete its contents. If the user logged into different machines you would find a folder for each machine UUID.

Following the above and logging on to any machine solved my problem!

Thanks guys...

I found workaround for this trouble.

Case 1) Users 10.9.5 and Server 10.6.8

Case 2) Users 10.9.2 - 10.9.5 and Server 10.9.3

Steps

1) rm ~/Library/Keychains/XXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX file

2) rm ~/Library/Cache

3) Do Keychain First Aid.

4) Confirm 'Synchronize login keychain password with account' in Keychain Preferences is checked.

I found sometimes 'off'.

5) Change login keychain password. Use all same password as User login.

5) Logout and repair accespreviledges twice.

No one claim me since I did this few weeks ago.

For step #2 you are blowing away the entire ~/Library/Caches folder?

That contains a lot of other stuff that isn't login or keychain related or even Apple related.

For step #5 are you talking about repairing permissions with Disk Utility or something else?

Step #2 isn't necessary, yesterday other user did only step #3,#4 and #5 password change then trouble was removed.

>For step #5 are you talking about repairing permissions with Disk Utility or something else?

Repairing permissions with diskutil command on Apple Remote Desktop as a root.

Have not tried 10.9 clients but the problem is still there with 10.10 clients. Our Server is 10.9.5.