You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
On 10.11 with pam_yubico 2.19, when I change control-flag in a working configuration to sufficient from required, I can login with password and no Yubikey inserted, and this appears in the console log:
21/09/2015 17:03:01.737 com.apple.xpc.launchd[1]: (com.apple.xpc.launchd.domain.user.501) Service "com.apple.xpc.launchd.unmanaged.loginwindow.87271" tried to hijack endpoint "com.apple.tsm.uiserver" from owner: com.apple.SystemUIServer.agent
When I change it back, it starts working again. This means it is not possible to unlock by only inserting the Yubikey, without entering a password. /etc/pam.d/screensaver:
On 10.11 with pam_yubico 2.19, when I change
control-flag
in a working configuration tosufficient
fromrequired
, I can login with password and no Yubikey inserted, and this appears in the console log:21/09/2015 17:03:01.737 com.apple.xpc.launchd[1]: (com.apple.xpc.launchd.domain.user.501) Service "com.apple.xpc.launchd.unmanaged.loginwindow.87271" tried to hijack endpoint "com.apple.tsm.uiserver" from owner: com.apple.SystemUIServer.agent
When I change it back, it starts working again. This means it is not possible to unlock by only inserting the Yubikey, without entering a password.
/etc/pam.d/screensaver
:The text was updated successfully, but these errors were encountered: