u2f desktop login: remove nouserok and add troubleshooting#568
Open
blu-nitro wants to merge 10 commits into
Open
u2f desktop login: remove nouserok and add troubleshooting#568blu-nitro wants to merge 10 commits into
blu-nitro wants to merge 10 commits into
Conversation
|
The successful documentation build for 8244db5 was deployed for preview: generated by workflow run 24895582147 (attempt 1) |
Member
|
Member
|
The last line is wrongly indented. |
blu-nitro
force-pushed
the
push-lovyyquwztnz
branch
from
6ebc74f to
aee9094
Compare
gui method for creating a user account serves no real purpose, as the rest of the documentation requires the user to be comfortable with cli anyway
on modern operating systems this should no longer be necessary also udev rule setup is described in all troubleshooting pages of the relevant nitrokey models
blu-nitro
force-pushed
the
push-lovyyquwztnz
branch
from
aee9094 to
aafbf82
Compare
jans23
requested changes
Apr 23, 2026
blu-nitro
force-pushed
the
push-lovyyquwztnz
branch
from
ba01011 to
060d9cf
Compare
reflect the fact that pamu2fcfg by default generates the config for the current user instead describe how to configure for multiuser properly
blu-nitro
force-pushed
the
push-lovyyquwztnz
branch
from
060d9cf to
4d1c090
Compare
jans23
requested changes
Apr 27, 2026
Member
jans23
left a comment
jans23
left a comment
There was a problem hiding this comment.
Explain in the introduction: Is this adding a NK as a 2nd factor in addition to a password or does it replace the password? Or will the user have the choice between password and NK usage?
|
|
||
| .. rstcheck: ignore-next-code-block | ||
| .. code-block:: bash | ||
| This step is optional, however it is advised to have a backup Nitrokey in the case of loss, theft or destruction of your primary Nitrokey. |
Member
There was a problem hiding this comment.
Elaborate that this requires a second Nitrokey device. This fact is not clear. Maybe just a single sentence would be sufficient such as "repeat the step to configure another Nitrokey as backup device"
Also the heading "Backup" is not very precise or misleading.
|
|
||
| $ cd /etc/pam.d | ||
| $ sudo $editor common-auth | ||
| $ sudo $EDITOR /etc/pam.d/common-auth |
Member
There was a problem hiding this comment.
$ sudo editor /etc/pam.d/common-auth
|
|
||
| .. contents:: :local: | ||
|
|
||
| .. warning:: |
Member
There was a problem hiding this comment.
Move the warning after the introduction
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
nouserokappears to be ignored on Ubuntu. Login with password still possible without it ifsufficientcontrol flag is used.fixes #278
Added troubleshooting guide for issues caused by gdm when certain pkcs packages are installed.
General updates and cleanup.