Anyone know of a command line way to determine if a keychain is locked/unlocked? It prompts the user for the current and previous password and if the user gets both those right everything works great! However i'm trying to build in a test to verify that the users previous password is correct and that part is not working. as well as updating the password and setting that to the default. I've written this script which is linked to a jamf Self Service policy that replaces the Login keychain with the old login-renamed-1 keychain. For us we use User based network certs so a user getting a new keychain also means they can't get on the network or VPN. 10.14.4 and up compounded this due to the 'update keychain' prompt not working and just creating a new keychain. An ongoing issue at many locations for AD bound macs is that if the users change their password incorrectly their keychain does not sync.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |