localauthority.conf - AdminIdentities: unix-group is ignored
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
policykit-1 (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
Allowed users and groups as admins for pkexec are defined in:
/etc/
[Configuration]
AdminIdentiti
As you can see, I added unix-group:
My user is localadmin-user1 who is in the local group localadmin. It does not matter if I create a new configuration file
/etc/
[Configuration]
AdminIdentiti
If I add the user himself instead of his group localadmin the user is listed the allowed list for pkexec.
[Configuration]
AdminIdentiti
How to reproduce:
- create local user and group (here: localadmin)
- add unix-group:
- pkexec mount
-> the local user in group localadmin is not listed
- add unix-user:
- pkexec mount
-> the local user localadmin-user1 is listed
----
Kubuntu 19.10
policykit-1 0.105-26ubuntu1
SSSD for system authorization including domain
Status changed to 'Confirmed' because the bug affects multiple users.