That was indeed an issue, the certmap now works correctly, I still don't get prompted for a pin when I insert the smart card, but I've realized that a big issue is my PAM config, what I want is for the username to be entered and PAM checks if it's in the /etc/passwd file, if it is continue with regular unix authentication. If that fails, check with SSSD if that user exists, and if so attempt whatever auth goes from there, I'll be testing what I want.
In order to achieve this, I'm reading a book called Pam Mastery by Michael Lucas, so far it's been really helpful in understanding how PAM processes the commands. _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
