Skip to main content

Fixing MS Lync Error OC_KeyContainer_user@hcl.com

Last week I came across this problem and deleting the default keychain did not fix it but somehow could not devot much time to fix it. As the solution was not available on Google, I thought to post it here. The error was: Microsoft Lync wants to use OC_KeyContainer_username@company.com. Please enter the keychain password prompt appeared. Unfortunately I forgot to take the screenshot of the error message but it somehow looks like the regular keychain popup window.

Worst thing about this error was that Keychain login screen was not accepting any password that I could think of, even though it was the correct one, which actually made it a strange issue for the people who are into the world of Troubleshooting Mac OS.

So lets have a look at Root Cause and then at the Fix.

The Cause:
Microsoft Lync creates a keychain file to store encryption keys. The file is physically stored in /Users/username/Library/Keychains and is named something similar to OC_KeyContainer_LaeeqA@hcl.comThis keychain will show at the left column list where you see login and system keychains. Noteworthy thing about this is that it would not have any link with the Login Keychain or login credentials. I don't like saying this but at times something happens to this keychain from working properly and once you remove this, Lync will create a new one for itself. When it does, it saves a Randomized password in /Users/LaeeqHumam/Library/Preferences/ folder.

Lets take a deeper dive in this:

If you have NOT checked the Save Password option on Lync Login window - The OC_KeyContainer__username@company.com keychain & OC_KeyContainer__username@company.compassword under Login keychain are generated when Lync connects to the server. Later on when the Lync quits, this OC_KeyContainer__username@company.com keychain and application password entry are removed automatically. On relaunch, a it will automatically create a new OC_KeyContainer__username@company.com keychain and application password entry in the user’s login keychain.

If you have checked the Save Password option on Lync Login window - and this entry does not exists, the OC_KeyContainer__username@company.com keychain and OC_KeyContainer__username@company.compassword entry in the user’s login keychain will get generated when Lync connects to the server. An MS Lync password entry is also created in the user’s login keychain if is is not already there. When you quit Lync, the OC_KeyContainer__username@company.com keychain and application password entry persist and are not automatically deleted.

Researcher Turns Over Details of macOS Keychain Security Flaw, Calls for Explanation About Lack of Mac Bug Bounty Program

The Fix:
Delete this Keychain entry, thats it! 

Currently as I am writing this post on a Virtual Machine so could not capture screenshots but soon as I get time, I would grab the key snaps to make the topic more clear.

Labels:

Comments

Post a Comment

Popular posts from this blog

MAKING A FILE/FOLDER INVISIBLE

How to hide a file/folder using Terminal This is one of the greatest technique that I ever came across, I had to share my Mac in office and was curious about hiding confidential data. This was when I started exploring and finally came up with this solution. These commands are to be typed in Terminal. To make a file or folder invisible in Mac OS X Finder setfile -a V testfile.txt Here is goes, the file or folder is no longer visible via the Finder GUI, though it will be by Terminal. Your files are still there and you can find them via the command line and will show with an ls command. If you want your files and folders to be visible again, use this command: To make a file or folder visible again in Mac OS X Finder setfile -a v testfile.txt Now the file/folder will be visible again to the Finder, cool isn't it? Please Note: setfile is a command line utility included in Apple’s Developer Tools, which is a highly recommended optional install included on any Mac OS X install...
4 comments
Read more

ENTOURAGE TROUBLESHOOTING: CRASHES WHILE LAUNCHING - II

Entourage Crashing due to Fonts There are two fonts that are known to be one of the most popular reasons of Entourage crashing. The first one is Helvetica Fractions which is majorly responsible to cause problems, the second is Times Phonetic. In order to fix this issue, don't just disable these fonts in Font Book, but physically remove them from your system and try to launch Entourage again. Other discussed reasons are database , schedules and duplicate daemons .
Post a Comment
Read more

An introduction to Mac OS X Server

Mac OS X server is combination of Power and Style. It derives power from its strong UNIX base and the style comes from well known Apple GUI. This combination makes Mac OS X Server one of the robust server available in present time. Mac OS X Server is built on a fully compliant UNIX foundation. This battle-tested core provides the stability, performance, and security that organizations require. And full UNIX conformance ensures compatibility with existing server and application software. Mac OS X Server is the ideal platform for deploying groundbreaking enterprise applications and services. The kernel in Mac OS X Server provides superior thread management and affinity algorithms for efficient handling of multithreaded applications on the latest generation of Intel multicore processors. It also provides precise control of real-time processing requirements, allowing a user-level thread — even an unprivileged one — to precisely specify its requirements for time-sensitive operations...
3 comments
Read more