Changing an expired password in lightdm does not change gnome-keyring password

Bug #1185567 reported by Walter Huf on 2013-05-29
This bug affects 1 person
Affects Status Importance Assigned to Milestone
lightdm (Ubuntu)

Bug Description

pam_sss is configured to authenticate against Active Directory via Kerberos. pam.d/common-password has been configured such that manual "passwd" invocations change pam_sss, then go on to pam_gnomekeyring and a pam_script to change any lingering passwords manually.
When lightdm detects an expired password and goes through the password change process, pam_gnomekeyring is not able to start gnome-keyring-daemon to change the keyring password.
pam_sss does not have a defer_pwchange option, which appears to be the workaround for bug #972537.

ProblemType: Bug
DistroRelease: Ubuntu 13.04
Package: lightdm 1.6.0-0ubuntu2.1
ProcVersionSignature: Ubuntu 3.8.0-22.33-generic 3.8.11
Uname: Linux 3.8.0-22-generic x86_64
ApportVersion: 2.9.2-0ubuntu8
Architecture: amd64
Date: Wed May 29 19:31:08 2013
MarkForUpload: True
 PATH=(custom, no user)
SourcePackage: lightdm
UpgradeStatus: No upgrade log present (probably fresh install)

Walter Huf (hufman) wrote :
Walter Huf (hufman) wrote :
Changed in lightdm (Ubuntu):
status: New → Triaged
importance: Undecided → Medium
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers