Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Why do some people do not like Keychain?
- Thread starter coolbreeze2
- Start date
- Sort by reaction score
Really? I just tried and was unable to replicate this. I find only a plain text field for "comments" and no options to attach anything.
I've moved from 1Password to Strongbox recently. Within this I also have software licenses, pdf of receipts and notes attached. Keychain is ok but quite limiting and as others have mentioned, I too prefer to have that extra layer of separation or independence.
Keychain is not meant to replace 1Password, KeePass, LastPass, etc. It's more of an analogue to the Windows Credential Manager, if anything. iCloud Keychain has a convenience factor for those that own multiple Apple devices, but even then, they're not the same kind of tool.
As for why some might not like it, I can think of two reasons:
(a) They're expecting it to be the kind of third party tools I mention above.
(b) When Keychain breaks, it REALLY breaks. It's not hard to fix, but it's supremely annoying until you do.
As for why some might not like it, I can think of two reasons:
(a) They're expecting it to be the kind of third party tools I mention above.
(b) When Keychain breaks, it REALLY breaks. It's not hard to fix, but it's supremely annoying until you do.
I have used the trial of 1Password for several days now and I am not super impressed. The only benefit for me I can see over Keychain is that 1Password can be used with all browsers instead of just Safari. I am now going to try the trial of Strongbox.
I've left 1Password as I refuse to adopt their subscription model, have bought the top tier version of Strongbox. It's not as intuitive (from the start) but has a wonderful customisation once you're up and going. I've only two devices and have a local database on both, but also a cloud based solution. This bit I backup manually and this gives me some redundancy or safety net.
Based on the # of comments stating that Keychain can only be used on Safari and Mac...
Y'all know that it's been awhile now but you can use keychain on Chrome Browsers and Windows right?
That said I completely understand going for 1Password / Strongbox / Other models just for backup, easy exporting of passwords out of, and using on non-Windows OSs.
I have KeePass XC on my Mac that holds my old 1Password database - while MOST of what I do is in Apple Keychain, I sometimes go to KeePass XC for password history, attachments, etc.
Y'all know that it's been awhile now but you can use keychain on Chrome Browsers and Windows right?
Set up iCloud Passwords on your Windows computer
Set up iCloud Passwords in iCloud for Windows so you can manage and autofill your passwords on your PC.
support.apple.com
Autofill iCloud passwords in a web browser on your Windows computer
Access passwords stored in iCloud on your Windows computer in Google Chrome and Microsoft Edge.
support.apple.com
That said I completely understand going for 1Password / Strongbox / Other models just for backup, easy exporting of passwords out of, and using on non-Windows OSs.
I have KeePass XC on my Mac that holds my old 1Password database - while MOST of what I do is in Apple Keychain, I sometimes go to KeePass XC for password history, attachments, etc.
Well I didn't know this. However, I am not using Windows. I am using Chrome on a Mac. Keychain does not work in this case as far as I know.Based on the # of comments stating that Keychain can only be used on Safari and Mac...
Y'all know that it's been awhile now but you can use keychain on Chrome Browsers and Windows right?
Set up iCloud Passwords on your Windows computer
Set up iCloud Passwords in iCloud for Windows so you can manage and autofill your passwords on your PC.support.apple.com
Autofill iCloud passwords in a web browser on your Windows computer
Access passwords stored in iCloud on your Windows computer in Google Chrome and Microsoft Edge.support.apple.com
That said I completely understand going for 1Password / Strongbox / Other models just for backup, easy exporting of passwords out of, and using on non-Windows OSs.
I have KeePass XC on my Mac that holds my old 1Password database - while MOST of what I do is in Apple Keychain, I sometimes go to KeePass XC for password history, attachments, etc.
This annoys me to no end.
I use Brave and Edge on my MBP and .... because I use Apple Keychain, I always have to go to Safari, open passwords and then manually copy them over - especially the 2FA codes. Hopefully apple will have a solution for this someday.
Till then, I'd definitely recommend a 3rd party option just for sanity's sake for you.
I was really happy with 1Password when I had it. I never really tried anything else.
I think this is typical. Many people think like the above that their passwords are "on the Internet". They don't understand the technology and fear what they don't understand.
It is probably a good thing that people fear what they don't understand. It kept cavemen from being eaten by bears that live in dark caves. But we also tend to not-fear the familiar, even if it is very dangerous. For example, car accidents are the #1 cause of death if you are under 40. But we think nothing of driving cars even if it is the #1 most likely thing to kill you.
So, familiarity drives decisions, even if it is irrational.
How well does keychain work with other apps that require login? some are other browsers and some are just non-browser apps. Having a password manager that is not so closely tied to the system browser makes it easier to work with different apps.Based on the # of comments stating that Keychain can only be used on Safari and Mac...
Y'all know that it's been awhile now but you can use keychain on Chrome Browsers and Windows right?
Set up iCloud Passwords on your Windows computer
Set up iCloud Passwords in iCloud for Windows so you can manage and autofill your passwords on your PC.support.apple.com
Autofill iCloud passwords in a web browser on your Windows computer
Access passwords stored in iCloud on your Windows computer in Google Chrome and Microsoft Edge.support.apple.com
That said I completely understand going for 1Password / Strongbox / Other models just for backup, easy exporting of passwords out of, and using on non-Windows OSs.
I have KeePass XC on my Mac that holds my old 1Password database - while MOST of what I do is in Apple Keychain, I sometimes go to KeePass XC for password history, attachments, etc.
I suppose that technically speaking, the servers that password management companies use to store users passwords are not part of the “Internet”. The obvious point is that these servers are connected to the Internet, and thus could be compromised to obtain sensitive user information. As I don’t see any reason why my passwords need to be on some server that I have no control over, I choose to keep my passwords on my computer that only I can access. To me, this is rational choice.
I moved to Bitwarden (BW) a few years ago when I moved from Safari to Firefox on my Macbook (as keychain won't work with it).
I then discovered that sites keychain wouldn't touch, including my router's login page, worked perfectly with BW. Plus, BW can fill in more than just user/password. I have a finance site that requires three pieces of info which BW can do. And BW keeps a brief history of previous passwords.
And finally, BW is secured separately to my Apple ID and phone's passcode.
I then discovered that sites keychain wouldn't touch, including my router's login page, worked perfectly with BW. Plus, BW can fill in more than just user/password. I have a finance site that requires three pieces of info which BW can do. And BW keeps a brief history of previous passwords.
And finally, BW is secured separately to my Apple ID and phone's passcode.
For Mac it works fairly well, but Windows - not at all based on the last time I used it - which was awhile ago. lol.
Some apps poll the OS for passwords, about half of mine do not (older I guess). lol.
Keychain does all I want it to so it suits me well in that sense.
However, the additional benefit of having 1Password or another third party manager is as you outline above: a different password and an extra layer of security in case someone had access to your Apple ID.
Thus, you could either switch to 1Password (or similar third party manager) entirely (provided it worked on my iMac and iPhone, as I believe they can) or perhaps use the third party manager for a few of the most sensitive/important passwords and Keychain for the rest.
Please forgive the silly question: assuming someone had access to your Apple ID then they could reset your password, biometrics, etc. (This has happened with recent horror stories with people's iPhones.) Therefore: if you had 1Password on your iPhone as well, wouldn't that render biometrics useless, because the person resetting Face ID would then be able to gain access that as well, anyway? Or does 1Password have a feature where the 'different password' would be needed if it detected that Face ID had been reset? How would it know?
I may be showing my ignorance as I haven't used 1Password before. I know the basics but please assume in your response that I'm not technically minded!
Thanks for your help.
I’m not sure if other apps or password managers, but if you add another finger to Touch ID (or face to Face ID), 1Password will ask for your master password again. This prevents people adding their finger or face, and getting into 1Password.
From the Codebook FAQ section: "Codebook does intentionally invalidate your keychain item for Touch ID Login when adding or removing a finger as a security measure."
Last edited:
Too many eggs in the Apple/iCloud basket already. At least with 1Password I'd be able to get into my bank accounts if my iCloud got compromised or something.
Thank you, this is very helpful information. (It has got me thinking about other apps now, though, and whether they are clever enough to realise that Face ID or Touch ID has been reset or another person added.)
I have banking apps on my phone which are set to access with Face ID. Hopefully, if the Face ID was altered then the apps would be clever enough to request some other proof of identity. I don't store banking passwords or etc. on my keychain.
As a security precaution, I could disable the option to enable these apps to use Face ID, which would force them to ask me for the password: I have a few strong passwords for some important accounts which I know from memory and are not stored, so this would improve security at the cost of a bit of inconvenience.
I agree with separating from Apple. I'm don't want my passwords locked up or available to someone who steals my phone or if Apple 'believes' I'm doing something against their terms of service and disable my Apple account.
I don’t like my passwords being stored on some random dudes online computer (da clouuuud)
Better to just make a good password convention
Better to just make a good password convention
I read too many posts on Reddit of people getting locked out for whatever reason. I even stopped using iCloud as my main email also, I switched to Fastmail.
I love Fastmail! I used them for a while before Gmail existed. I don't use the account anymore, but I keep it to keep my user name reserved.
It's free. It does both password storage and 2FA. And it's locked behind Apple's security measures. And I have the extra encryption turned on. It does everything I need it to. So I'm not sure what's not to like.
Fastmail is based in Australia, which has some of the worst privacy laws on the planet. As for iCloud mail, I've had mine since it was Mobile Me with the @me.com domain and to this day I still don't get spam in my inbox.
Last edited:
At least Australia is upfront…. did you forgot how the US government was spying on the U.S. people, and you think that changed? The US isn’t any better that Australia, seeing both are past of 5 Eyes. Fastmail has offices and servers in the US also.
I also have an @me, but at least I can get into my email and passwords if I get locked out of my Apple ID. Something I see a lot on Reddit.
I also have Tutanota for email too.