I downvoted solely for one reason.
See screenshot below...says enough.
Yes, it's convoluted but it is there.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
macOS Monterey Features Dedicated Password Section in System Preferences, Built-In Authenticator and More
- Thread starter MacRumors
- Start date
- Sort by reaction score
See screenshot below...says enough.
Yes, it's convoluted but it is there.
I don’t think it did. I have an additional Apple ID that still uses Two Step Verification with SMS codes.
Keychain Access is for much more than passwords.
Two-step verification for Apple Account – Apple Support (AU)
If you can't use two-factor authentication with your account, for example if your device uses iOS 8 or OS X Yosemite or earlier, you can keep your Apple Account secure with two-step verification instead.
New in Monterey is an option to import and export passwords, so you can move your logins between iCloud Keychain and other password management apps. iCloud Keychain does not have as many entry fields as some password managers, but it supports username, password, and website data.
I would love it if all of Apple's sync-via-iCloud apps (e.g. Notes) had a similar bulk export/import feature. As a user, if you remember to do that every so often, it gives you some recourse in the event that some bug in iCloud later deletes or corrupts all your content.
The telephone number is a very bad second factor.
1. I don't want to give my telephone number to companies just because I use their products.
2. It is quite easy to hack this. In many cases where iCloud data were stolen, 2FA didn't prevent this.
3. If you have you loose your second factor e.g. you have a new telephone number, you may loose all your data. It is very difficult to reset the account.
The integration is nice I agree. Do you have attachments for certain websites and or purchases? If so, how are you planning on using those in relation to Apple's new feature?
Are there documented cases of someone's account getting hacked that had 2FA turned on?
I agree, especially having to enter the account password every time you want to see the password for a specific site. In my opinion, we shouldn't have to do that after the first time.
One more thing,
Of late, Keychain has stopped syncing across my iMac, 2 iPhones and 2 iPads.
I can AirDrop among them, but that's a PITA.
I have contacted "Apple Support" but the tech was going to "bump it to engineering" and I haven't heard bupkis since.
Still waiting. At least the export function might make a transition to 1Password less painful.
Of late, Keychain has stopped syncing across my iMac, 2 iPhones and 2 iPads.
I can AirDrop among them, but that's a PITA.
I have contacted "Apple Support" but the tech was going to "bump it to engineering" and I haven't heard bupkis since.
Still waiting. At least the export function might make a transition to 1Password less painful.
FWIW, a linked AppleWatch and iPhone will unlock passwords, etc with a double press of the side bar.
I know that. I wear an Apple watch all the time. The point is it is redundant and unnecessary to have to go through that process each time, even when using the watch or iPhone as a means to unlock.
There are three reasons why I won't be switching from a 3rd party (Bitwarden in my case) to this. Maybe these will be solved in the future.
In order of importance to me:
1) It doesn't work in Firefox.
2) It isn't customisable as to which fields it will auto-complete. It refuses to fill in my router password, or any website which has more complex fields, such as those needing user, password, and some other piece of info.
3) There's still no iOS app. I can't see my "secure notes" on my phone.
In order of importance to me:
1) It doesn't work in Firefox.
2) It isn't customisable as to which fields it will auto-complete. It refuses to fill in my router password, or any website which has more complex fields, such as those needing user, password, and some other piece of info.
3) There's still no iOS app. I can't see my "secure notes" on my phone.
FYI: an easy way to access Passwords menu is to press Siri button and say, "Passwords." Never fails opens menu immediately. I updating my passwords to Apple's strong passwords and like their future bio metric account log in function to eliminate the requirement for passwords.
Maybe Apple is working on the iOS crossover.
I agree with you. A person should be able to see and edit as needed on MacOS or iOS. Otherwise, the feature becomes very niche and not of much use to a lot of people. I think Apple should have integrated Notes with the new feature.
Edited to add: I think this new feature is good but, it has a long way to go before it becomes good competition for 1Password, Bitwarden, Strongbox and others.
Last edited:
And another case where people don’t set up/use the method provided: the recovery email address.There is a fresh case of someone’s account gets a new recovery phone number he doesn’t recognise and bam. His account gets disabled, just like that. 2FA is extremely unfriendly to users who only has one apple device, be it iPhone or iPad or Mac.
Apple ID Trusted Phone Number
In my troubleshooting quest to resolve my keyboard issue I was told by Apple Support to erase everything and reboot then login and do a restore. Do all that and login with Apple ID and it says 2 step verification. The problem is the last 2 numbers of my “trusted number” I’ve never heard before...forums.macrumors.com
It’s only available within Keychain Access app.
System Preferences app does not have this feature, and this article is specifically about the System Preferences app, hence my comment.
For sure. 3FA is even harder to crack, and then there's 4FA, which makes hacking really impossible. I think OP's point is personal choice; if you don't want or need to set up 2FA, it'd be nice to not have to use it. Kinda like hurricane and rental insurance.
Welcome enhancements, but still so so far from being a truly useful password manager.
things like 1Password and KeepassXC, for example, have:
* tags: incredibly useful for tracking what logins are for, what projects they may be associated with, what information is used, etc
* unlimited free form fields
* password history
* attachments
* dedicated facets for different types of information
* etc
things like 1Password and KeepassXC, for example, have:
* tags: incredibly useful for tracking what logins are for, what projects they may be associated with, what information is used, etc
* unlimited free form fields
* password history
* attachments
* dedicated facets for different types of information
* etc
I would never, repeat never, trust my passwords to a 3rd party company's software that is free. "Free" means you're the product, always has and always will, and all their asking for is (unbelievably) your keys to the kingdom i.e. your precious passwords. I fundamentally just don't see how people can put such absolute trust in free software.