SSSD / sssd

Clone

#3626 allow smart card pin input before smart card is inserted
Closed: duplicate 6 years ago Opened 6 years ago by jhrozek.

Closed: duplicate
Reopen Issue

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1538468

Description of problem:
Using pam_pkcs11, I can input my smart card PIN code in GDM (login/unlock)
before smart card is inserted. When smart card is inserted my previously
entered pin code is used.

Using sssd (pam_sss) instead of pam_pkcs11 this does not work, I have to wait
for the smart card to be recognized before I can enter the PIN.

This is a little thing, but coming from pam_pkcs11 it is an annoyance and often
an interruption in workflow. Seeing as pam_pkcs11 is deprecated and wont be
available in RHEL8 it would be nice to have the same features available in
sssd.

Version-Release number of selected component (if applicable):
sssd-1.15.2-50.el7_4.8.x86_64

How reproducible:
Always

Steps to Reproduce:
1. Configure sssd/pam_sss for use with smartcard
2. Reboot/log out to GDM login screen
3.

Actual results:
You have to wait for card to be read before pin prompt is available.

Expected results:
I'd like the pin prompt to be available for input regardless if smartcard is
read or not. If I input the PIN and press enter, I expect my input to be used
as soon as smartcard is recognized (a sensible TTL for this might be a good
idea).

Additional info:

Metadata Update from @jhrozek:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1538468
6 years ago

Metadata Update from @jhrozek:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1538468, https://bugzilla.redhat.com/show_bug.cgi?id=1538464 (was: https://bugzilla.redhat.com/show_bug.cgi?id=1538468)
6 years ago

Issue linked to Bugzilla: Bug 1538464

This is a duplicate of ticket #3650.

Metadata Update from @jhrozek:
- Issue close_status updated to: duplicate
- Issue status updated to: Closed (was: Open)
6 years ago

Metadata Update from @jhrozek:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1538468, https://bugzilla.redhat.com/show_bug.cgi?id=1538464, https://bugzilla.redhat.com/show_bug.cgi?id=1611011 (was: https://bugzilla.redhat.com/show_bug.cgi?id=1538468, https://bugzilla.redhat.com/show_bug.cgi?id=1538464)
5 years ago

Issue linked to Bugzilla: Bug 1611011

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/4647

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.

Metadata
None
None
None
None
None
None
None
None
None
None
None
None
https://bugzilla.redhat.com/show_bug.cgi?id=1538468, https://bugzilla.redhat.com/show_bug.cgi?id=1538464, https://bugzilla.redhat.com/show_bug.cgi?id=1611011
None
None
None
None
None
None
None
None
None
None
None
None
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.