MacOS – Changing corporate password

keychainmacospassword

From time to time my company requires me to change my password. We are mostly a PC based organization and everything revolves around Windows logon.

There are a few Mac users that are on their own. Macs can log in to various shared network drives, mail servers and LAN applications. But all of this just uses keychain.

Everytime I'm required to change my password, updating everything on the Mac is a nightmare. There are always some hidden processes that retain older passwords and attempt to use them, resulting in corporate IT locking my account.

I'm at a loss. Changing every entry in keychain still leaves old passwords somewhere and I don't know how to completely flush them out. I tried WireShark but couldn't find anything.

What do people do about this to avoid being locked out?

Best Answer

I've moved most of my password storage to 1Password app so that I don't need to mind the keychain when it makes more than one copy of a password. the benefit of that is I can have my passwords synced to iOS (and other OS) as well as save them periodically to a USB drive for disaster recovery.

Keychain doesn't do any of these as well as a tool made for managing passwords. As a bonus, I end up making much more secure passwords programmatically rather than typing them by hand.