-
Bug
-
Resolution: Unresolved
-
Normal
-
None
-
rhel-8.9.0
-
None
-
sst_idm_ipa
-
ssg_idm
-
False
-
-
Red Hat Enterprise Linux
-
All
This is a followup to Bugzilla#1017651
Scenario:
- SSH private key is stored on a smartcard or TPM
- SSH public key is stored on IPA
- User log on to a system having SSH agent active where user management is controlled by IPA
Expected results
kerberos ticket will be created
Actual results
no kerberos ticket will be created, user has to provide user/pass credentials which breaks hereby the 2FA requirement.