Bug 1371631
| Summary: | login using gdm calls for gdm-smartcard when smartcard authentication is not enabled | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 7 | Reporter: | Roshni <rpattath> |
| Component: | sssd | Assignee: | Sumit Bose <sbose> |
| Status: | CLOSED ERRATA | QA Contact: | Steeve Goveas <sgoveas> |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 7.3 | CC: | aakkiang, grajaiya, jhrozek, ksiddiqu, lslebodn, mkolaja, mkosek, mzidek, nsoman, pbrezina, rstrode, sbose, spoore |
| Target Milestone: | rc | Keywords: | Regression |
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | sssd-1.14.0-42.el7 | Doc Type: | If docs needed, set a value |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2016-11-04 07:20:57 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Roshni
2016-08-30 16:31:37 UTC
How did you log in using smartcard if enable-smartcard-authentication=false ? I think you must be missing steps in comment 0? I might have an idea what is going on. For 7.3 I added a patch which set PKCS11_LOGIN_TOKEN_NAME when Smartcard authentication is used. Ray, is it possible that the screen-saver will use gdm-smartcard whenever this environment variable is set without checking other options like the enable-smartcard-authentication dconf setting? I'll prepare a test build which sets the variable only if SSSD was called from gdm-smartcard so that when gdm-password was used for the initial authentication, even with a Smartcard, the desktop components are not confused by the variable. Upstream ticket: https://fedorahosted.org/sssd/ticket/3165 master: * 35ba922bc51416f02877b53a6f25c04104ae5f03 * 3649b959709f1ab187092f054d4aace0798c98fa * 71cd9f98150577224559bdc12c53c01ce6f2c3d9 [root@dhcp129-34 ~]# rpm -qi sssd Name : sssd Version : 1.14.0 Release : 42.el7 Architecture: x86_64 Install Date: Sun 18 Sep 2016 12:54:23 PM EDT Group : Applications/System Size : 35147 License : GPLv3+ Signature : (none) Source RPM : sssd-1.14.0-42.el7.src.rpm Build Date : Fri 16 Sep 2016 09:48:09 AM EDT Build Host : x86-039.build.eng.bos.redhat.com Relocations : (not relocatable) Packager : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla> Vendor : Red Hat, Inc. URL : http://fedorahosted.org/sssd/ Summary : System Security Services Daemon Executed the steps in the bug description, authentication was successful while unlocking the screen. master: * a8631161c47cbaefe7fd14b88202238bbdcc3dc8 Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHEA-2016-2476.html |