I finally upgraded to 22.04 and the workaround in my previous message is now also no longer working for me, though it had been in 21.04. Had to remove the YubiKey to log in.
My new workaround is to add an option to the gdm-smartcard alternatives configuration that's just password, no smartcard.
Press <enter> to keep the current choice[*], or type selection number: 4
$
This is slightly more dangerous than the previous workaround as you may mess up your gdm login completely if you edit the file incorrectly but removing the YubiKey should default you back to just password so you'll be able to fix it.
I finally upgraded to 22.04 and the workaround in my previous message is now also no longer working for me, though it had been in 21.04. Had to remove the YubiKey to log in.
My new workaround is to add an option to the gdm-smartcard alternatives configuration that's just password, no smartcard.
I added the final 2 lines in the file here:
$ cat /var/lib/ dpkg/alternativ es/gdm- smartcard d/gdm-smartcard
manual
/etc/pam.
/etc/pam. d/gdm-smartcard -pkcs11- exclusive d/gdm-smartcard -sssd-exclusive d/gdm-smartcard -sssd-or- password d/gdm-password
30
/etc/pam.
50
/etc/pam.
40
/etc/pam.
60
$
Now I choose that option using the same command as my previous workaround:
$ sudo update-alternatives --config gdm-smartcard d/gdm-smartcard ).
There are 4 choices for the alternative gdm-smartcard (providing /etc/pam.
Selection Path Priority Status ------- ------- ------- ------- ------- ------- ------- ---- d/gdm-password 60 auto mode d/gdm-smartcard -pkcs11- exclusive 30 manual mode d/gdm-smartcard -sssd-exclusive 50 manual mode d/gdm-smartcard -sssd-or- password 40 manual mode d/gdm-password 60 manual mode
-------
0 /etc/pam.
1 /etc/pam.
2 /etc/pam.
3 /etc/pam.
* 4 /etc/pam.
Press <enter> to keep the current choice[*], or type selection number: 4
$
This is slightly more dangerous than the previous workaround as you may mess up your gdm login completely if you edit the file incorrectly but removing the YubiKey should default you back to just password so you'll be able to fix it.