For the record, it was solved for me with polkit (nor kdesu or sudoers related). Seems to be related to remote GUI connections (I'm using XRDP): cat >> /etc/polkit-1/rules.d/03-allow-pcscd.rules <<EOF polkit.addRule(function(action, subject) { if (action.id == "org.debian.pcsc-lite.access_pcsc" && ( subject.isInGroup("group1") || subject.isInGroup("group2") )) { return polkit.Result.YES; } }); polkit.addRule(function(action, subject) { if (action.id == "org.debian.pcsc-lite.access_card" && ( subject.isInGroup("group1") || subject.isInGroup("group2") )) { return polkit.Result.YES; } }); EOF sudo systemctl restart polkit.service "subject.isInGroup" doesn't seem to accept wildcards, if several groups need to be evaluated it could be cumbersome. For the time being, two groups will do for me. Ref: https://bugzilla.redhat.com/show_bug.cgi?id=1478345#c51 Regards, CI.- El sáb, 28 ago 2021 a las 22:16, Ciro Iriarte (<cyruspy@gmail.com>) escribió:
Hello,
To illustrate it better, I'm attaching a screenshot of the prompt I would like to avoid, or at least to move to sudoers delegation instead of using root password.
Regards, CI.-
El sáb, 28 ago 2021 a las 10:17, Ciro Iriarte (<cyruspy@gmail.com>) escribió:
Hello!,
I need to use VMware Remote Console in 15.3 with KDE with users that don't hold root password.
Currently kdesu asks for the root password while launching it, if I cancel the prompt it starts fine so I assume it's related to optional features like USB devices access.
The users accessing this machine cannot be given root, I can setup sudo at most if needed. Reading around found some references to polkit (I'm clueless about it) and changing the "elevation" method for kdesu from su to sudo in a user profile (I need it system wide).
Can anyone provide some guidance on the best way to solve this?
Regards, CI.-
-- Ciro Iriarte http://iriarte.it --
-- Ciro Iriarte http://iriarte.it --