hi all,
after a fresh install of OpenSUSE Leap 15.1 on a seasoned Lenovo T420, plus installation of pam_kwallet, I’m experiencing a confusing situation.
The initial problem (also before installation of pam_kwallet):
- WLAN not able to connect after reboot (using Network manager)
when trying to edit network settings, a message box pops up like
“system policy prevents modification of network settings for all users”
(translated form German “Die Systemrichtlinien verhindern das Bearbeiten von Netzwerkeinstellungen für alle Benutzer”
=> this box asks for a root password
=> my login password does not work in this context (although it perfectly works with sudo on the command line)
Some more tests on the command line (not checked before installation of pam_kwallet):
- “su -” works with login password
- “sudo -i” does NOT work with login password
(On my primary machine, running tumbleweed, both the “su -” and the “sudo -i” commands work fine)
- or, when using “sudo passwd root”, the password dialog does NOT accept the login password
- after “su -”, a “passwd” allows me to change the root(?) password,
however situation is still as described above
There is only one user account on the system, and it should/does have sudo privileges.
I’m hoping that someone may have some ideas?
Go into your connection editor for this connection.
Click on the security tab.
There should be an option on where the network key is stored:
(1) encrypted
(2) unencrypted in a file for all users
(3) provide the key every time
Those are not the exact wording, and the number is probably wrong.
Set it to store the key unencrypted.
That’s what stops this authentication prompt. And this is not as insecure as it might sound (the key is stored in a file readable only by root).
thanks for the quick reply.
I did as you suggested. Anyway, after a reboot, the message box still appears, and it still does not accept my password. If I just cancel the box, WLAN gets connected though.
The really strange thing however is that now even ‘sudo’ on the command line does not accept my password anymore. But I still can start Yast with the exact same password! Are there several different sudo resp. root authentication schemes?
Uninstall pam_kwallet. And check out Bug 1133808
The quoted bug seems to exactly describe what I see… thanks for pointing me to this. I’ll check if uninstalling pam_kwallet also resolves my issues…
ok, removing pam_kwallet did the trick. Also WLAN starts fine after reboot now. I’ll keep an eye on the bug ticket and wait for a resolution before installing pam_kwallet again.
Tthe only remaining nuisance is that baloo crashes at startup, but that’s a different story…
ok, removing pam_kwallet did the trick. Also WLAN starts fine after reboot now. I’ll keep an eye on the bug ticket and wait for a resolution before installing pam_kwallet again.
The only remaining nuisance is that baloo crashes at startup, but that’s a different story…