iCloud Keychain is end - to - end encipher among all your machine and utilize iCloud just for sync your password and other shared keychain entries . As I ’ve written previously in “ Why iCloud Keychain may instigate you for a gimmick word used with other Apple hardware you own , ” Apple relies on gimmick passcodes in a particular way as you add additional equipment to an iCloud Keychain set .

With your first equipment , you ’re simply enabling syncing . Apple requires that you infix the password or passcode on that twist to prime the pump . That encrypted parole is used to wind all your iCloud Keychain entries . The next twist you add will prompt you to enter the passcode or password of the one you induct iCloud Keychain with . Entering the secret unlock the iCloud Keychain sync and adds your new machine to the band of legitimate keychain sync partner . Because you ’re infix the passcode or passphrase on a gimmick under your control , it ’s never allow your hardware : Apple does n’t learn it ; it ’s just a secret only you have intercourse to unlock the syncing operation .

One reader , however , was shocked when restoring an iPhone that they were prompt to enter the password of a computing machine they no longer owned — one they doubly - determine had been take away fromtheir set of register machine . sure that was a security news leak ? They were concerned that whoever have their honest-to-goodness estimator might have access to their keychain secret .

Fortunately , that ’s not the type , though Apple surely should have a way to resolve this job when devices are removed from iCloud — but possibly not with a furbish up accompaniment . Only the encrypted passcode of that previous machine lingered , likely within the iPhone backup . When incite to enter it , the lecturer was only unlocking their local keychain set .

While this request search sketchy or problematical , it was poorly labeled rather than a security golf hole .

When the reader invalid iCloud Keychain on all their twist and re - enable it , they were n’t motivate for the watchword on an honest-to-god Mac again — or any passcode at all . The gadget all keep enough common security system element associate with the iCloud identity that re - hallmark was n’t take .

This Mac 911 article is in response to a question give in by Macworld lector Andrea .

Ask Mac 911

We ’ve compiled a list of the question we get asked most oftentimes , along with answers and links to column :   read our A-one FAQ   to see if your question is cover . If not , we ’re always bet for young problems to solve ! e-mail yours tomac911@macworld.com , including screen capture as appropriate and whether you want your full name used . Not every interrogation will be answered , we do n’t respond to email , and we can not supply lineal troubleshooting advice .