Help

Issues with iCloud Connectivity and Touch ID Configuration Post Password Conversion to PIN on Mac

Go to solution
Shyamsundar
Contributor III

Thursday

we execute a script that prompts them to enter their current Mac login password along with the 6-digit PIN they wish to use as their password moving forward. Upon setting the Mac login password to a 6-digit PIN using the script "sudo dscl. -passwd /Users/"$LoggedInUser" "$currentPassword" "$newpin, successful password conversion occurs. However, post-restart, users who are logged into iCloud receive a prompt stating "This Mac can't connect to iCloud because of a Problem" and are asked to log in to iCloud again. Additionally, the Touch ID configuration removes previously added fingerprints, necessitating the need to reconfigure Touch ID and log in to iCloud after setting the password as a PIN and rebooting. Has anyone seen this or any hints about this
0 Kudos
Reply
1 ACCEPTED SOLUTION

Go to solution
sdagley
Esteemed Contributor II

Friday

@Shyamsundar Did you also change the password to the login keychain? If not this would be applicable: https://apple.stackexchange.com/questions/365101/how-to-change-the-password-of-a-local-admin-user-th...

And I have to comment, a 6-digit PIN is extremely short for a computer password. What's the logic for going from a password to a PIN?

View solution in original post

Reply
2 REPLIES 2

Go to solution
sdagley
Esteemed Contributor II

Friday

@Shyamsundar Did you also change the password to the login keychain? If not this would be applicable: https://apple.stackexchange.com/questions/365101/how-to-change-the-password-of-a-local-admin-user-th...

And I have to comment, a 6-digit PIN is extremely short for a computer password. What's the logic for going from a password to a PIN?

Reply

Go to solution
Shyamsundar
Contributor III
In response to sdagley

Friday

We migrated to PSSO with a secure enclave and wanted to use a PIN to log in to a Mac with a minimum of 6 digits. So it's easy for the users to log in to the Mac.  As it's a local-only password and the Mac device has built-in brute force attack protection you need physical access to the Mac to crack the PIN

Windows Hello for Business utilizes a minimum 6-digit PIN to log in to the Windows device, we are trying to replicate the same for Mac users as well. 

Reply