[fc5] pam_keyring

Matthew Saltzman mjs at ces.clemson.edu
Sat Jan 13 18:10:41 UTC 2007


On Sat, 13 Jan 2007, Michael A. Peters wrote:

> I installed pam_keyring and modified /etc/pam.d/gdm
>
> Now when I log in, I have to enter my password twice.
> It would be preferable to only enter it once.
> Is there something wrong with my gdm pam configuration?
>
> My default keyring has the same password as my user account.
>
> Only other possible thing - I'm not using the standard fedora gdm
> greeter, I'm using the one with the pretty flower (but still packaged by
> Fedora).
>
> my /etc/pam.d/gdm file is attached.
> versions of pam_keyring and gdm:
>
> pam_keyring-0.0.8-2.fc5
> gdm-2.14.11-1.fc5

Here's mine, from FC6, but the same as my FC5.

$ more /etc/pam.d/gdm
#%PAM-1.0
auth       required    pam_env.so
#auth       sufficient  pam_unix.so likeauth nullok
auth       optional    pam_keyring.so try_first_pass
auth       include     system-auth
account    required    pam_nologin.so
account    include     system-auth
password   include     system-auth
session    optional    pam_keyinit.so force revoke
session    include     system-auth
session    required    pam_loginuid.so
session    optional    pam_console.so
session    optional    pam_keyring.so

The "auth sufficient" is suggested in the pam_keyring man page, but it 
seems to break the functionality.  Leaving it off works for me.

-- 
 		Matthew Saltzman

Clemson University Math Sciences
mjs AT clemson DOT edu
http://www.math.clemson.edu/~mjs




More information about the fedora-list mailing list