[fprint] fprintd - timeout and max_tries option?

Bastien Nocera hadess at hadess.net
Tue Dec 27 19:26:29 UTC 2016


On Tue, 2016-12-27 at 18:45 +0100, emak wrote:
> Hi
> 
> I wanted to enter whether the password or use the fprint-reader. As
> the
> fprint-reader is not alwas faster (e.g. remote login / close laptop
> lid
> in docking station) I set this default order in my /etc/pam.d/system-
> auth:
> auth sufficient pam_unix.so try_first_pass nullok
> auth required pam_fprintd.so
> ...
> 
> I then realized, that gnome-keyring get's not succesfully unlocked if
> "pam_unix.so" is only set to "sufficient" instead of "required". So I
> switched the order to:
> auth sufficient pam_fprintd.so
> auth required pam_unix.so try_first_pass nullok
> ...
> 
> That would be okay for me if I could set the timeout / max_tries
> lower,
> but somehow this doesn't work. I am using following config in my
> /etc/pam.d/system-auth now, which doesn't seem to work:
> auth sufficient pam_fprintd.so max_tries=2 timeout=3
> auth required pam_unix.so try_first_pass nullok
> ...
> 
> I could not find anything on your website nor in the delivered docu
> on
> how to change/use those parameters. Your advice would greatly be
> appreciated.

It's "max-tries=..." not max_tries:
https://cgit.freedesktop.org/libfprint/fprintd/tree/pam/pam_fprintd.c#n46

You can use "debug" to see more information in the system logs.

Cheers


More information about the fprint mailing list