Linux Mint Chrome Asking For Password

You lot are hither: Habitation / Explicate / The Keyring Concept in Ubuntu: What is It and How to Use it?

If yous use automatic login in Ubuntu or other Linux distributions, you might have come up across a pop-up message of this sort:

Enter countersign to unlock your login keyring
The login keyring did not go unlocked when y'all logged into your computer.

Enter Password To Unlock Your Login Keyring Ubuntu

It keeps on popping upwards several times before disappearing if you keep on clicking cancel. Yous may wonder why do y'all keep seeing this keyring message all the time?

Let me tell you something. Information technology's non an fault. It'south a security characteristic.

Surprised? Let me explain the keyring concept in Linux.

What is keyring in Linux and why is information technology used?

Why exercise you employ a keyring (also called keychain) in the existent life? You use it to keep 1 or more than keys grouped together then that they are easy to observe and carry.

Information technology's the aforementioned concept in Linux. The keyring feature allows your arrangement to group various passwords together and continue it one place.

Most desktop environments similar GNOME, KDE, Xfce etc use an implementation of gnome-keyring to provide this keyring feature in Linux.

This keyring keeps your ssh keys, GPG keys and keys from applications that use this feature, like Chromium browser. Past default, the keyring is locked with a master password which is often the login password of the account.

Every user on your system has its own keyring with (normally) the same password every bit that of the user account itself. When you login to your system with your password, your keyring is unlocked automatically with your business relationship's password.

The trouble comes when y'all switch to auto-login in Ubuntu. This means that you lot login to the system without entering the countersign. In such instance, your keyring is not unlocked automatically.

Keyring is a security characteristic

Remember I told yous that the keyring was a security characteristic? At present imagine that on your Linux desktop, you are using auto-login. Anyone with access to your desktop can enter the system without password just you have no bug with that perhaps because yous use it to browse internet just.

Merely if you employ a browser similar Chromium or Google Chrome in Ubuntu, and utilize it to save your login-password for various websites, yous accept an effect on your mitt. Anyone can utilise the browser and login to the websites for which you accept saved password in your browser. That's risky, isn't it?

This is why when you try to employ Chrome, information technology will ask you to unlock the keyring repeatedly. This ensures that only the person who knows the keyring's countersign (i.due east. the business relationship countersign) can utilize the saved countersign in browser for logging in to their respective websites.

If you continue on cancelling the prompt for keyring unlock, it volition somewhen become away and let you use the browser. However, the saved password won't be unlocked and y'all'll encounter 'sync paused' in Chromium/Chrome browsers.

Sync paused in Google Chrome

If this keyring always existed, why yous never saw it?

That's a valid question if you have never seen this keyring thing in your Linux arrangement.

If y'all never used automatic login (or changed your account's password), you might non even have realized that this feature exists.

This is because when you login to your system with your countersign, your keyring is unlocked automatically with your account'due south password.

Ubuntu (and other distributions) asks for password for common admin tasks similar modifying users, installing new software etc irrespective of whether yous car login or non. But for regular tasks similar using a browser, it doesn't ask for password because keyring is already unlocked.

When yous switch to automatic login, y'all don't enter the password for login anymore. This means that the keyring is non unlocked and hence when y'all try to use a browser which uses the keyring feature, it will inquire to unlock the keyring.

Yous tin easily manage the keyring and passwords

Where is this keyring located? At the core, it'south a daemon (a program that runs automatically in the groundwork).

Don't worry. You lot don't have to 'fight the daemon' in the terminal. Well-nigh desktop environments come up with a graphical application that interacts with this daemon. On KDE, in that location is KDE Wallet, on GNOME and others, information technology's called Password and Keys (originally known equally Seahorse).

Password And Keys App in Ubuntu

Y'all tin use this GUI awarding to see what awarding utilize the keyring to manage/lock passwords.

As you tin can see, my system has the login keyring which is automatically created. In that location is also a keyrings for storing GPG and SSH keys. The Certificates is for keeping the certificates (like HTTPS certificates) issued by a certificate say-so.

Password and Keys application in Ubuntu

You can too employ this application to manually shop passwords for website. For example, I created a new password-protected keyring chosen 'Exam' and stored a countersign in this keyring manually.

This is slightly improve than keeping a list of passwords in a text file. At to the lowest degree in this case your passwords tin be viewed only when y'all unlock the keyring with password.

Saving New Password Seahorse

Ane potential problem here is that if you format your organisation, the manually saved passwords are definitely lost. Normally, you lot make backup of personal files, non of all the user specific information such every bit keyring files.

In that location is way to handle that. The keyring data is commonly stored in ~/.local/share/keyrings directory. You tin can see all the keyrings here but you lot cannot see its content straight. If yous remove the countersign of the keyring (I'll bear witness the steps in later section of this commodity), you can read the content of the keyring like a regular text file. You tin can copy this unlocked keyring file entirely and import it in the Countersign and Keys application on some other Linux computer (running this application).

So, let me summarize what y'all have learned so far:

• Most Linux has this 'keyring feature' installed and activated by default
• Each user on a organisation has its own keyring
• The keyring is normally locked with the account's password
• Keyring is unlocked automatically when you login with your password
• For auto-login, the keyring is non unlocked and hence you are asked to unlock information technology when you try to utilize an awarding that uses keyring
• Not all browsers or application employ the keyring feature
• In that location is a GUI application installed to interact with keyring
• Yous can utilize the keyring to manually store passwords in encrypted format
• Y'all can change the keyring countersign on your ain
• Yous can consign (by unlocking the keyring commencement) and import it on some other estimator to become your manually saved passwords

Alter keyring password

Suppose you changed your business relationship password. Now when you login, your system tries to unlock the keyring automatically using the new login password. But the keyring yet uses the old login password.

In such a instance, you tin can alter the keyring countersign to the new login password so that the keyring gets unlocked automatically as soon as you login to your system.

Open the Countersign and Keys application from the carte:

Look for Password and Keys app in the carte

Now, right click on the Login keyring and click on Change Countersign:

Change Keyring Password

What if you don't remember the old login password?

You probably know that information technology is easy to reset forgotten password in Ubuntu. The problem comes with the keyring in such cases. Y'all inverse the account countersign but you don't remember the one-time business relationship password that is still used by the keyring.

At present you cannot alter it because you lot don't know the quondam countersign. What to do now?

In such a example, you'll have to remove the entire keyring itself. Y'all can do that from the Passwords and Keys application:

Delete Keyring Ubuntu

It volition ask for your confirmation:

Delete Keyring

Alternatively, you may also manually delete the keyring files in ~/.local/share/keyrings directory.

When the old keyring is removed and y'all try to use Chrome/Chromium, it will ask you to create new keyring.

New Keyring Password

You tin can apply the new login password so that the keyring gets unlocked automatically.

Disable keyring countersign

In cases where you desire to use automatic login but don't want to unlock keyring manually, y'all may cull to disable the keyring with a workaround. Keep in mind that you are disabling a security feature and then think twice before doing so.

The process is similar to changing keyring password. Open Password and Keys awarding and get on to change the keyring countersign.

The play tricks is that when it asks to change the countersign, don't enter a new countersign and hit Continue instead. This will remove whatever password from the keyring.

Disable Keyring countersign by non setting whatsoever password at all

This way, the keyring will have no countersign and it remains unlocked all the fourth dimension.

Source: https://itsfoss.com/ubuntu-keyring/

Share this post