This is the shared access group used by both MSAL and Azure AD Authentication Library (ADAL) SDKs and ensures the best single sign-on (SSO) experience between multiple apps from the same publisher. "Microsoft Outlook wants to use your confidential information stored in "Microsoft Identity xxxxxx-xxxxx-xxxxx-xxxxxxx" in your keychain" To allow this, enter the login keychain password but I have to set to use automatically and when I try to view it I cannot access the area. In the Keychain Access app on your Mac, choose File > Add Keychain. On iOS, add the com.microsoft.adalcache keychain group to your app's entitlement in XCode under Project settings > Capabilities > Keychain sharing. On macOS 10.15 onwards (macOS Catalina), MSAL uses keychain access group attribute to achieve silent SSO, similarly to iOS. When the Microsoft Authentication Library for iOS and macOS (MSAL) signs in a user, or refreshes a token, it tries to cache tokens in the keychain. In addition to that, once in a blue moon, your Mac will ask for your Keychain password. Important: If you delete a keychain, all its information is deleted. With Keychain on, the person gets access to all your accounts. Due to macOS keychain limitations, MSAL's access group doesn't directly translate to the keychain access group attribute (see kSecAttrAccessGroup) on macOS 10.14 and earlier. Delete a keychain in Keychain Access on Mac.

See the Apple Support article Set up iCloud Keychain. What is Keychain Access on Mac? Choose File > Delete Keychain [keychain name]. Many email providers offer webmail, which is a way to use email with a web browser such as Safari, instead of with an email app such as Mail. To avoid the issue, you can allow others to log in as guest users. Configure keychain. Keychain Access is an inbuilt feature of macOS that store and saves all the Mac-based applications.

See Change the login password. Cause. You can also open the Keychain file in the Finder or, if you use Time Machine to back up your files, you can restore the file with Time Machine. Keychains are usually located in the Keychains folder in the Library folder in your home folder.

You might want to do this if, for example, you’ve forgotten the password or you’re transferring a computer to someone else. Perhaps you want to share your Mac with a family member or a friend. Modifying this control will update this page automatically, View the information stored in a keychain, Change the trust settings of a certificate, Request a certificate from a certificate authority, If your Mac keeps asking for your keychain password, If you’re asked for access to your keychain, If a trusted app asks for keychain access, If you need to update your keychain password, If you receive an invitation from a certificate authority.
When the Microsoft Authentication Library for iOS and macOS (MSAL) signs in a user, or refreshes a token, it tries to cache tokens in the keychain.
SSO is achieved via the keychain access groups functionality. For example, if you're using an iCloud Mail account, you can use iCloud.com to send and receive email.. Because the password that you use with Mail is usually the same password that you use with webmail, try signing in to webmail with that password.

Keychain Access is an application that contains various types of data, including passwords for WiFi networks, websites, FTP servers, network shares, encrypted disk images, SSH accounts, private keys, certificates, and much more. Caching tokens in the keychain allows MSAL to provide silent single sign-on (SSO) between multiple apps that are distributed by the same Apple developer. Copyright © 2020 Apple Inc. All rights reserved.

In the Keychain Access app on your Mac, choose File > Add Keychain. However, it behaves similarly from a SSO perspective by ensuring that multiple applications distributed by the same Apple developer can have silent SSO.

Modifying this control will update this page automatically, View the information stored in a keychain, Change the trust settings of a certificate, Request a certificate from a certificate authority, If your Mac keeps asking for your keychain password, If you’re asked for access to your keychain, If a trusted app asks for keychain access, If you need to update your keychain password, If you receive an invitation from a certificate authority. This can make your individual accounts more secure. But you can recover its items later as long as you know its password. This password management tool for Apple stores the passwords for all the applications and websites that you visit and this makes it easy for you to browse and use the apps on your PC and iPhone. While most of MSAL's functionality will continue to work, SSO through keychain access requires application to be signed.

MSAL on iOS uses the com.microsoft.adalcache access group by default.

Apple introduced Keychain Access with Mac OS 8.6, and the app has been part of the ecosystem ever since. It is evident from above that the reason behind this situation is Keychain Access password. Keychain Access works in collaboration with iCloud keychain, which lets you share keychains with your other devices. If you'd like to use a different keychain access group, you can pass your custom group when creating MSALPublicClientApplicationConfig before creating MSALPublicClientApplication, like this: If you don't want to share SSO state between multiple apps, or use any keychain access group, disable keychain sharing by passing the application bundle ID as your keychainGroup: Error -34018 normally means that the keychain hasn't been configured correctly.