Description of problem:
Virtual Terminal login with smartcard: Should throw useful error message when userid mis-matches.
Version-Release number of selected component (if applicable):
[tester@dhcp231-173 ~]$ rpm -q authconfig pam_pkcs11 gdm
Steps to Reproduce:
1. Authentication is configured as:
Use smart card: ON Enforce smart card: ON Log out behaviour configured to:
Activate screen saver.
2. A smart card is enrolled for this user.
3. Remove smart card from the hook and restart the desktop.
4. User logs in using the tty virtual terminal screen e.g. <ctrl> + <alt> +
<F2>. User types something random at the login prompt.
5. The user is prompted for their smart card pin. Type correct pin.
"ERROR: pam_pkcs11.c:537: no valid certificate which meets all requirements found, Login incorrect." and Login prompt is re-displayed.
Should filter out this error message and add something more useful.
This issue has been proposed when we are only considering blocker
issues in the current Red Hat Enterprise Linux release.
** If you would still like this issue considered for the current
release, ask your support representative to file as a blocker on
your behalf. Otherwise ask that it be considered for the next
Red Hat Enterprise Linux release. **
Thank you for your bug report. This issue was evaluated for inclusion
in the current release of Red Hat Enterprise Linux. Unfortunately, we
are unable to address this request in the current release. Because we
are in the final stage of Red Hat Enterprise Linux 6 development, only
significant, release-blocking issues involving serious regressions and
data corruption can be considered.
If you believe this issue meets the release blocking criteria as
defined and communicated to you by your Red Hat Support representative,
please ask your representative to file this issue as a blocker for the
current release. Otherwise, ask that it be evaluated for inclusion in
the next minor release of Red Hat Enterprise Linux.
If we waant this one I can reprioritize other bugs.
Development Management has reviewed and declined this request. You may appeal
this decision by reopening this request.