http://bugzilla.suse.com/show_bug.cgi?id=1038454
http://bugzilla.suse.com/show_bug.cgi?id=1038454#c9
--- Comment #9 from P. Otato
The question remains as to whether this should be added to sddm only or should be put into common-auth and common-session! As it stands, this will only solve the issue when logging in through sddm, but not if eg the user logs in through ssh.
My suggestion in Bug 954419 was to put the line auth optional pam_mount.so into common-auth and the lines session optional pam_cryptpass.so session optional pam_mount.so so they are available to all aplications, not just sddm.
(In reply to Josef Möllers from comment #8)
The last two lines should be put into common-session!
I tried your suggested solution and I am able to login but the encrypted home directory is not unmounted after logout. /etc/pam.d/sddm
#%PAM-1.0 auth include common-auth account include common-account password include common-password session required pam_loginuid.so session include common-session
/etc/pam.d/common-auth
#%PAM-1.0 # # This file is autogenerated by pam-config. All changes # will be overwritten. # # Authentication-related modules common to all services # # This file is included from other service-specific PAM config files, # and should contain a list of the authentication modules that define # the central authentication scheme for use on the system # (e.g., /etc/shadow, LDAP, Kerberos, etc.). The default is to use the # traditional Unix authentication mechanisms. # auth optional pam_mount.so auth required pam_env.so auth optional pam_gnome_keyring.so auth required pam_unix.so try_first_pass
/etc/pam.d/common-session
#%PAM-1.0 # # This file is autogenerated by pam-config. All changes # will be overwritten. # # Session-related modules common to all services # # This file is included from other service-specific PAM config files, # and should contain a list of modules that define tasks to be performed # at the start and end of sessions of *any* kind (both interactive and # non-interactive # session required pam_limits.so session required pam_unix.so try_first_pass session optional pam_umask.so session optional pam_systemd.so session optional pam_gnome_keyring.so auto_start only_if=gdm,gdm-password,lxdm,lightdm session optional pam_env.so session optional pam_cryptpass.so session optional pam_mount.so
-- You are receiving this mail because: You are on the CC list for the bug.