Signing in/Out of iCloud & 1Password Data
Hi all,
Looking for some advice as far as security and 1password on my work Mac. I would like to sign into/out of iCloud at the beginning and end of each day. Worst case if I'm given walking papers all of a sudden I don't need to worry about all my contacts, photo stream, iCalendar etc on my work machine. We have a super crack forensics team that will get the data and I simply don't want to be that guy. My dilemma is this. Previously I was using DropBox to sync my data however that gave the ability to anyone who accessed my machine the ability to go into DropBox and select other folders from my account to pull down data that is not work related as I had selective sync to only pull down the 1Password database. That said I ditched that option in favor of the new iCloud sync in Yosemite and the new version of 1Password. My concern is if I were to sign out of iCloud at the end of my work day that would mean any iCloud data relationship would break and hence 1Password would freak out. When I return the next day and sign into iCloud I assume I would then need to go to the prefs and tell 1Password to use iCloud and let it find the database again. This would be a daily pain. Thoughts on how I might work through this? Yes I do have the ability to wipe my Mac remotely (assuming that work through a well maintained firewall) however the first thing we do for someone we walk is to yank the network drop which renders this useless. So to summarize
How can i sign out of into and out of iCloud each day and have the least impact to 1Password
Comments
-
Hi @pomonr
I actually think Dropbox would be a better fit for you here. Hear me out first and see what you think.
Instead of selectively downloading just your keychain (I didn't even know you could do that) what if you created a second Dropbox account that you only accessed at work. You then share the 1Password folder that contains just that one agilekeychain with this new account. Any changes made at either work or home would sync up but we've limited file visibility to a single encrypted file when at work.
As an alternative how does that sound? If you like that then our guide on Sharing a vault is where you'd want to start looking.
Let us know what you think.
0 -
Hola,
Thanks for the response. I had been doing that however the problem lies in all my other devices as I have those all tied into Dropbox and syncing. Hence my phone, and other various computing devices are tied into DropBox already for my data. I would need to reconfigure all of those devices everything I wanted to access the database.
0 -
Hi @pomonr
Is that because you'd have to move your existing keychain into a folder and it's currently in the root of your Dropbox folder?
0 -
No Keychain in Dropbox. Used to have the 1Password Database there. Now that resides in iCloud.
0 -
Hi @pomonr,
Aside from switching back to Dropbox sync, I don't think you would need to reconfigure anything except the Dropbox account on your work Mac. Your personal Macs & iOS devices can still use your regular Dropbox account. Or maybe we misunderstood what you meant about having to reconfigure your devices?
To get back to your original question about signing out of iCloud at the end of each day, I assume you mean you would be signing out from System Preferences > iCloud? The main problem I see with that would be that it would delete your iCloud data from that Mac every time you sign out. When you sign in again the next day, it would need to re-download all your iCloud data again. I can't say for sure if that would cause problems, but it might slow down your general workflow, depending on some factors.
As for 1Password, it would still have a local copy of your data. When it detects that iCloud is no longer available, it would notify you about the sync problem, and you would need to re-enable iCloud sync. At the very least, this would be inconvenient for you. In theory, I don't think that should cause any serious issues, although it's not something I've personally tested.
0
