Ubuntu

It's not possible to create a user who can shut down the system without being in "admin"-group

Reported by Christoph Langner on 2008-12-30
4
Affects Status Importance Assigned to Milestone
policykit-gnome (Ubuntu)
Undecided
Unassigned

Bug Description

Binary package hint: policykit-gnome

I'm working with Ubuntu Intrepid Ibex which runs policykit 0.9. I tried to configure my system in a way so that other a user "foo" can shut down the system while other users are logged into my system. But user "foo" should not be inside the admin-group. He should only be able to shut down the system in the case other user are logged into it.

To do this i ran polkit-gnome-authorization and added the user, who should be able to shut down the system to following keys

org.freedesktop.hal.power-management.shutdown
org.freedesktop.hal.power-management.shutdown-multiple-sessions

Even after i restarted the whole machine my second user can't shut down the system. When i try to do a shutdown via the fast-user-switch applet the user get's logged out and i switch to a user user who is also logged into the system. When i try to shutdown the system via "System -> Shut Down" inside the panel i can only choose user who are inside the admin-group.

I attached screenshot with the right i set.

Christoph Langner (chrissss) wrote :
Christoph Langner (chrissss) wrote :
Chris Coulson (chrisccoulson) wrote :

There are a few problems with what you're trying to do. Firstly, you're adjusting the privileges on the wrong actions. The actions you want to adjust are:

org.freedesktop.consolekit.system.stop-multiple-users
org.freedesktop.consolekit.system.restart-multiple-users

Also, the fast-user-switch-applet in Intrepid has no Policykit support, and so will not work anyway. This is now fixed in Jaunty.

This should all work properly in Jaunty, so I'm going to close this bug.

Changed in policykit-gnome (Ubuntu):
status: New → Invalid
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers