Microsoft SharePoint Wants to Use Your Confidential Information Stored in ADALCache in Your Keychain
When using Microsoft SharePoint on macOS, many users encounter a strange and somewhat concerning message: “Microsoft SharePoint wants to use your confidential information stored in ADALCache in your keychain.” This prompt appears when SharePoint tries to access authentication tokens stored in the macOS Keychain for seamless login, particularly if you’re using Office 365. For users unfamiliar with Keychain Access, this message can be alarming, leaving them wondering whether to allow access or not.
Let’s dive into the nature of the problem, what causes it, and most importantly, how to resolve it.
What is ADALCache?
Before jumping into the issue, it’s important to understand what ADALCache refers to. ADAL (Active Directory Authentication Library) is a tool that enables apps to authenticate users via Azure Active Directory. It securely stores tokens, credentials, and session information, allowing users to bypass repeated sign-ins.
On macOS, these credentials are stored in the Keychain — a secure storage system that holds sensitive data like passwords and certificates. ADALCache stores the tokens needed by apps like SharePoint, Word, or OneDrive to access the Office 365 services without requiring users to log in repeatedly.
Why Does This Prompt Appear?
The message “Microsoft SharePoint wants to use your confidential information stored in ADALCache in your keychain” typically manifests when SharePoint tries to access the saved authentication tokens from the Keychain but either the app’s permissions are unclear, or the user has recently reset their password or updated the Office app. Here are a few common causes:
- Expired Credentials: When you reset your Office 365 password or make significant updates to your Microsoft account, the existing credentials stored in ADALCache may become invalid.
- macOS Keychain Issues: Permissions within macOS Keychain may become misaligned, leading to access issues when applications like SharePoint attempt to retrieve tokens.
- Office 365 Updates: After updating Office apps (including SharePoint), existing authentication tokens may need to be reauthorized, triggering the message.
- Multiple Accounts: If you’re logged into several Microsoft accounts (e.g., personal and work), SharePoint might get confused about which credentials to use, leading to the prompt.
- Keychain Corruption: Occasionally, errors within the Keychain itself may cause this prompt, as the stored information could be corrupted or inaccessible.
Real-World Examples
On various forums and platforms like Reddit and Microsoft Community, users have voiced their frustration with this issue. One user reported:
“Every time I open SharePoint, I get a pop-up that says ‘Microsoft SharePoint wants to use your confidential information stored in ADALCache in your keychain.’ Even after allowing access, it keeps reappearing whenever I open a new Office app.”
Other users have highlighted that the issue persists even after granting permission, leading to a constant loop of pop-ups asking for the same access.
How to Resolve the Issue
If you’re facing this problem, there are several ways to fix it. Here’s a step-by-step guide to resolving the issue:
1. Allow Access via Keychain
- When the pop-up appears, click Allow or Always Allow. If you choose “Allow,” the application will only access the credentials for that specific instance. Choosing “Always Allow” grants continuous access.
- If prompted repeatedly, try logging out of your Office 365 account and logging back in.
2. Reset Keychain Permissions
If allowing access does not stop the pop-up, reset your Keychain permissions:
- Open Keychain Access from Applications > Utilities.
- In the search bar, type ADALCache.
- Right-click on the ADALCache entry and choose Get Info.
- Under the Access Control tab, make sure Microsoft apps like SharePoint are listed. If not, click the + button and add them manually.
- Save your changes and restart SharePoint.
3. Delete and Recreate the Keychain Entry
If resetting permissions doesn’t work, you may need to delete the existing Keychain entry and create a new one:
- In Keychain Access, search for ADALCache.
- Right-click on the entry and choose Delete.
- Open SharePoint again, and when prompted, log in with your Office 365 credentials. The system will recreate a fresh ADALCache entry in the Keychain.
- Grant access when the pop-up appears.
4. Sign Out and Back Into Office 365
- Open any Office app (Word, Excel, etc.) and go to Preferences.
- Click on Accounts and sign out from your Office 365 account.
- Close all Office apps and restart your Mac.
- Sign back into your Office 365 account and allow access when prompted.
5. Reinstall Office 365 Apps
If none of the above methods work, consider reinstalling your Office apps:
- Uninstall the Office suite from your Mac.
- Restart your Mac to clear out any temporary files.
- Download and reinstall the latest version of Office 365.
- Log in with your Office 365 credentials and grant access when prompted.
Preventing Future Issues
After resolving the issue, there are some steps you can take to prevent it from happening again:
- Keep Office and macOS Updated: Ensure that both your Office apps and macOS are up-to-date. Software updates often fix compatibility issues and bugs that could cause problems with the Keychain.
- Use One Microsoft Account: If possible, use a single Microsoft account across all Office apps to avoid confusion with ADALCache entries.
- Check Keychain Regularly: Periodically check Keychain Access for any unusual or outdated entries. If you notice multiple ADALCache entries or unused tokens, delete them to keep the system running smoothly.
- Review Permissions: After significant updates to Office apps or your macOS system, go into Keychain Access to verify that permissions for Microsoft apps are still correctly configured.
Conclusion
The issue of Microsoft SharePoint wanting to use your confidential information stored in ADALCache in your keychain can be frustrating, but it’s not uncommon for macOS users who interact with Microsoft services. The pop-up is generally harmless and aims to facilitate a seamless sign-in experience by leveraging stored credentials. However, if this message persists, following the troubleshooting steps outlined above should resolve the problem.