Description of problem: The shipped polkit policy is completely desktop-centric and expects that the admin user is logged in an active local session (ie: a seat in logind parlance, with a monitor and keyboard). This prevents DBus API use when logged in via ssh (and using pkttyagent as your polkit agent) or via Cockpit (which is a valid use case, eg: printers driven by servers or server software). The <allow_any> tag in polkit policy applies to non-local sessions. It should be set to something other than 'no' unless the action directly affects hardware of the login seat. Version-Release number of selected component (if applicable): colord-1.1.7-1.fc20.x86_64
https://github.com/hughsie/colord/pull/5
Fixed upstream. Thanks.