Q: Bind To AD : Keychain Issues "PLEASE HELP!!!"
Hello. When a user's Active Directory password changes, the Keychain becomes a big mess. It pops up when the client at login or when the client opens apps like Safari, Word, etc. Regardless, entering new or old user password does not fix the problem. Any suggestions or fixes?
The quick fix is to delete the Keychain login, "delete references and files." However lately that does not work, and I end up backing user data and rebuilding the client user profile.
Posted on Jun 8, 2015 8:32 AM
No fix, other than to delete the Keychain.
(see: OS X: Keychain Access asks for keychain "login" after changing login password - Apple Support)
Talking with Apple Support, they guided me to two areas of the Keychain to delete: "login" and "Local Items." We were having difficulties and unable to delete the "Local Items", so we ended up deleting the ~/Library/Keychains folder entirely.
So... I created a script (see attached) and placed it on the Desktop for clients to use in the event that their AD passwords have changed and they're all of a sudden bombarded with prompts to enter passwords. (see attached)
Special thanks to resources:
- http://apple.stackexchange.com/questions/106722/applescript-for-deleting-desktop -files-upon-logout
- http://ss64.com/osx/osascript.html
Posted on Jun 9, 2015 1:08 PM




