Auto Generate New Login Keychain
Computer Configuration > Policies > Centrify Settings > Mac OS X Settings > Security & Privacy Settings > Auto Generate New Login Keychain
Use this policy to automatically generate a new login keychain if a user’s keychain password does not match the password they used to successfully login, resulting in the message “the system was unable to unlock your login keychain”.
This commonly occurs if someone has changed their account password on another system.
If this policy is enabled, a new keychain will be generated when a password sync issue is discovered. This new keychain will be set as the default login keychain and the previous keychain will be moved to a backup.
Centrify recommends disabling this policy if you plan to use Enable Keychain synchronization.
This policy is disabled by default.