Use this policy to automatically generate a new login keychain if a user's keychain password does not match the password they used to successfully login.
This commonly occurs if someone has changed their account password on another system.
If this policy is enabled, a new keychain will be generated when a password sync issue is discovered. This new keychain will be set as the default login keychain and the previous keychain will be moved to a backup. By default this policy is disabled.
Registry Hive | HKEY_LOCAL_MACHINE |
Registry Path | Software\Policies\Centrify\CentrifyDC\Settings\Mac\Security |
Value Name | mac.auto.generate.new.login.keychain |
Value Type | REG_SZ |
Enabled Value | true |
Disabled Value | false |