Password management

This article explains how to manage the password for your OpenPGP key.

There are options to store or cache your password. Open macOS System Preferences > GPG Suite.

1. Store password in macOS keychain

When you store a password in macOS keychain, pinentry, the program used to ask for your password, will never again ask for that password. macOS will remember this password and automatically use it when needed. That means you will no longer see the pinentry dialog querying for your password. The password is protected with your macOS user password. To see stored OpenPGP passwords in macOS Keychain Access:

  1. open macOS Keychain Access (not GPG Keychain)
  2. enter 'gnupg' in the search field
  3. double click any search result and then tick the 'Show password' checkbox

To enable this option, navigate to System Preferences > GPG Suite (old name: GPGPreferences). In the password section tick the 'Store in OS X Keychain' option. The pinentry dialog asking for your password also has that checkbox.

2. password caching

GPG Suite preferences pane (old name: GPGPreferences) password section also has the option to set a certain time your password can be cached. Enter any amount of seconds for which you want your password to be remembered. Password queries after that time period will again show pinentry asking for your password.

3. Delete stored passwords

The 'Clear' button allows to clear the cache and delete all OpenPGP passwords stored in the macOS keychain access.

gpg_suite_password.jpg

pinentry_save_in_keychain.jpg