[fc5] pam_keyring
Matthew Saltzman
mjs at ces.clemson.edu
Sat Jan 13 18:10:41 UTC 2007
On Sat, 13 Jan 2007, Michael A. Peters wrote:
> I installed pam_keyring and modified /etc/pam.d/gdm
>
> Now when I log in, I have to enter my password twice.
> It would be preferable to only enter it once.
> Is there something wrong with my gdm pam configuration?
>
> My default keyring has the same password as my user account.
>
> Only other possible thing - I'm not using the standard fedora gdm
> greeter, I'm using the one with the pretty flower (but still packaged by
> Fedora).
>
> my /etc/pam.d/gdm file is attached.
> versions of pam_keyring and gdm:
>
> pam_keyring-0.0.8-2.fc5
> gdm-2.14.11-1.fc5
Here's mine, from FC6, but the same as my FC5.
$ more /etc/pam.d/gdm
#%PAM-1.0
auth required pam_env.so
#auth sufficient pam_unix.so likeauth nullok
auth optional pam_keyring.so try_first_pass
auth include system-auth
account required pam_nologin.so
account include system-auth
password include system-auth
session optional pam_keyinit.so force revoke
session include system-auth
session required pam_loginuid.so
session optional pam_console.so
session optional pam_keyring.so
The "auth sufficient" is suggested in the pam_keyring man page, but it
seems to break the functionality. Leaving it off works for me.
--
Matthew Saltzman
Clemson University Math Sciences
mjs AT clemson DOT edu
http://www.math.clemson.edu/~mjs
More information about the fedora-list
mailing list