[fc5] pam_keyring

Matthew Saltzman mjs at ces.clemson.edu
Sat Jan 13 18:10:41 UTC 2007

On Sat, 13 Jan 2007, Michael A. Peters wrote:

> I installed pam_keyring and modified /etc/pam.d/gdm
> Now when I log in, I have to enter my password twice.
> It would be preferable to only enter it once.
> Is there something wrong with my gdm pam configuration?
> My default keyring has the same password as my user account.
> Only other possible thing - I'm not using the standard fedora gdm
> greeter, I'm using the one with the pretty flower (but still packaged by
> Fedora).
> my /etc/pam.d/gdm file is attached.
> versions of pam_keyring and gdm:
> pam_keyring-0.0.8-2.fc5
> gdm-2.14.11-1.fc5

Here's mine, from FC6, but the same as my FC5.

$ more /etc/pam.d/gdm
auth       required    pam_env.so
#auth       sufficient  pam_unix.so likeauth nullok
auth       optional    pam_keyring.so try_first_pass
auth       include     system-auth
account    required    pam_nologin.so
account    include     system-auth
password   include     system-auth
session    optional    pam_keyinit.so force revoke
session    include     system-auth
session    required    pam_loginuid.so
session    optional    pam_console.so
session    optional    pam_keyring.so

The "auth sufficient" is suggested in the pam_keyring man page, but it 
seems to break the functionality.  Leaving it off works for me.

 		Matthew Saltzman

Clemson University Math Sciences
mjs AT clemson DOT edu

More information about the fedora-list mailing list