Comment 7 for bug 1933027

wastrel, you're my saviour! I wouldn't discover that there is an option in ages!

I think this should be the default, actually, because as I've stated if sssd is not configured in the system we should use passwords, and if system administrator configures proper smartcard authentication only then should there be an option to forbid passwords.

Actually, it looks even more strange that current option is sssd-exclusive when you can just unplug the key and get a password prompt anyway.