Description of problem:
The shipped polkit policy is completely desktop-centric and expects that the admin user is logged in an active local session (ie: a seat in logind parlance, with a monitor and keyboard).
This prevents DBus API use when logged in via ssh (and using pkttyagent as your polkit agent) or via Cockpit (which is a valid use case, eg: printers driven by servers or server software).
The <allow_any> tag in polkit policy applies to non-local sessions. It should be set to something other than 'no' unless the action directly affects hardware of the login seat.
Version-Release number of selected component (if applicable):
Fixed upstream. Thanks.