Mobile Technology

What is Apple's iCloud Keychain and how do I use it?

What is Apple's iCloud Keychain and how do I use it?
Apple’s iCloud Keychain keeps passwords synced across iOS 7 devices and OS X Mavericks
Apple’s iCloud Keychain keeps passwords synced across iOS 7 devices and OS X Mavericks
View 12 Images
iCloud Keychain is easy to toggle on or off in Settings
1/12
iCloud Keychain is easy to toggle on or off in Settings
After logging in to a website, you'll be asked to save your username and password
2/12
After logging in to a website, you'll be asked to save your username and password
iCloud Keychain can be used to generate passwords on certain sites
3/12
iCloud Keychain can be used to generate passwords on certain sites
Some sites don't work with iCloud Keychain yet
4/12
Some sites don't work with iCloud Keychain yet
Safari can generate suggested passwords for websites
5/12
Safari can generate suggested passwords for websites
You can force websites to save and allow generated passwords from iCloud Keychain
6/12
You can force websites to save and allow generated passwords from iCloud Keychain
Apple’s iCloud Keychain keeps passwords synced across iOS 7 devices and OS X Mavericks
7/12
Apple’s iCloud Keychain keeps passwords synced across iOS 7 devices and OS X Mavericks
You can delete passwords for certain sites stored in iCloud Keychain
8/12
You can delete passwords for certain sites stored in iCloud Keychain
Credit Cards will be offered to be remembered or you can enter them in manually
9/12
Credit Cards will be offered to be remembered or you can enter them in manually
Name and Passwords needs to be enabled in Safari settings for iCloud Keychain to work
10/12
Name and Passwords needs to be enabled in Safari settings for iCloud Keychain to work
When setting up iCloud Keychain the first time you'll need to create a passcode
11/12
When setting up iCloud Keychain the first time you'll need to create a passcode
12/12
View gallery - 12 images

Apple’s iCloud Keychain feature is the company's attempt to make a basic level of password management available in its iOS 7 mobile OS. It’s a convenient feature that keeps your account names, passwords, and credit card numbers stored in iCloud. Here's a look at what it is and how to use it.

What is iCloud Keychain?

It’s a management feature in iOS 7 that keeps your account names, passwords, and even credit card numbers stored behind 256-bit AES encryption on Apple's iCloud servers. Then that data is synced between authorized iOS 7 devices and OS X Mavericks – the latest computer OS from Apple.

How to use iCloud Keychain

The first time you set up your device for iOS 7, you'll be asked if you want to enable iCloud Keychain. But if you skipped that step during setup, you can turn it on later. To enable or disable the feature go to Settings > iCloud > iCloud Keychain and there you can toggle it on or off.

iCloud Keychain is easy to toggle on or off in Settings
iCloud Keychain is easy to toggle on or off in Settings

The first time you turn iCloud Keychain on, you'll be prompted to sign in to iCloud with your Apple ID credentials. After that, you'll be prompted to create a passcode. You can either use the code you've set up to lock your device or create a different one. I recommend using something different for improved security. This way, if someone knows your device's lock screen code, it won't be as easy for them to get into your passwords and credit card info.

When setting up iCloud Keychain the first time you'll need to create a passcode
When setting up iCloud Keychain the first time you'll need to create a passcode

You'll also need to go to Settings > Safari > Passwords & AutoFill and turn on Names and Passwords and Credit Cards if you want to use it to make shopping online easier.

Name and Passwords needs to be enabled in Safari settings for iCloud Keychain to work
Name and Passwords needs to be enabled in Safari settings for iCloud Keychain to work

When you go to a site that requires you to log in, after entering your password, a message will come up asking if you want to save the information.

After logging in to a website, you'll be asked to save your username and password
After logging in to a website, you'll be asked to save your username and password

iCloud Keychain can generate passwords for you, too. Though the passwords it generates aren't particularly strong, it's definitely better than using the same password for all of your sites. To generate one, open Safari and go to the site you want to create a password for. Fill out everything else that's required, and when you get to the password field, you'll notice a "suggest password" option above the onscreen keyboard. Tap on it.

iCloud Keychain can be used to generate passwords on certain sites
iCloud Keychain can be used to generate passwords on certain sites

Not all sites are set up to work with iCloud Keychain, however. Sometimes you'll run into problems where the site doesn't support generating or saving passwords with iCloud Keychain yet.

Some sites don't work with iCloud Keychain yet
Some sites don't work with iCloud Keychain yet

If the above situation happens to you, there is a way to force sites to save to iCloud Keychain anyway. Go to Settings > Safari > Passwords & AutoFill, then turn on the Always Allow option.

You can force websites to save and allow generated passwords from iCloud Keychain
You can force websites to save and allow generated passwords from iCloud Keychain

Then go back to the website and you should have no problem saving a password you create or allow it to generate a suggested password.

Safari can generate suggested passwords for websites
Safari can generate suggested passwords for websites

If you ever want to delete a saved password, go to Settings > Safari > Passwords & AutoFill > Saved Passwords. There you'll see a list of sites that have saved passwords. Tap Edit, then select the site(s) you want to delete passwords for. Then enter the passcode you created, then verify the action. If you tap the website on this page, you'll be prompted to enter in your passcode, and then you can see the passwords for each of the sties.

You can delete passwords for certain sites stored in iCloud Keychain
You can delete passwords for certain sites stored in iCloud Keychain

For the credit card information, any time you type it in while making a purchase in Safari, iCloud Keychain will offer to remember it for you, just like passwords. But you can also enter this information in manually.

Go to Settings > Safari > Passwords & AutoFill > Saved Credit Cards. On the next screen tap Add Credit Card, then type in your credit card information. Do this for each card you want to add. If you need to make any changes to it, just tap the card you need, enter in your passcode, tap Edit, then make the appropriate changes or delete the card.

Credit Cards will be offered to be remembered or you can enter them in manually
Credit Cards will be offered to be remembered or you can enter them in manually

Is iCloud Keychain secure?

Though everything is easy and convenient, there are some caveats. For instance, iCloud Keychain doesn't have a separate master password option. That means, once you unlock your iPhone or iPad and hand it off to someone, they will have access to all of your passwords and credit cards.

Also, it doesn't generate super strong passwords. However it's a good starting point for users who want more security versus using the same password on every website. Plus all of your stored data in iCloud Keychain is protected by 256-bit AES encryption.

Bottom Line

iCloud Keychain provides the convenience of storing your passwords and credit card details and syncing them between other authorized devices, but it is a "first time" effort from Apple. If you're hesitant and want an established password manager, you might want to look at other options, such as 1Password or LastPass.

If you're reluctant to have your credit card information stored and synced between devices in the cloud, you can use it for passwords only. It's not perfect, and in my tests, a lot of sites just didn't support it – even apple.com. For those sites to work, you'll need to force sites to accept the feature. It's a decent enough start, but I wouldn't recommend using it on important sites, such as online banking, PayPal...etc. At least not in this first iteration.

View gallery - 12 images
3 comments
3 comments
Rocky Stefano
Yeah after all the revelations about the NSA you can for sure make a bet that I will never use this service.
Stradric
I would definitely advise against using this service for anything sensitive. Store Disqus or Reddit credentials, sure. Don't put bank account or credit card information there.
Otherwise, it rounds out the iCloud service nicely.
christopher
@Rocky - you may as well use it - the leaked NSA agent training docs reveal that their success factor in being able to extract every bit of data off your iphone, and to secretly and remotely enable all sensors (mic, camera, GPS, ...), even in situations where you do not have network carrier access, is 100%. Apple is a PRISM member.