After setting up the fingerprint sensor up in kubuntu 23.04 it works flawlessly apart from the fact that i cannot login through sddm after rebooting the system. This ruins the fingerprint scanner feature as i need to switch to tty2 and remove the fingerprint and re-enroll it every time I turn the laptop off.
I have found a temporary solution of automatically logging in and using a script to force the kde plasma screensaver that requires login.
Hi @SirChipalot
From what I understand, this is an issue with SDDM, it does not support login with fingerprint with the current release version 0.19.0 at login.
Adding the suggested line worked, but I couldn’t use my password any more with sudo or to login. With pam-auth-update I could use my password after 10 seconds. It appears that the fingerprint reader would block other means of auth for 10 seconds before trying other means of identification.
Neither of these are great. I would like to be able to auth with either my password or my finger.
Here is what pam-auth-update put into my common-auth file:
I see the 10 second timeout and it looks like the unix login is trying to run, but is seems like it is blocked by the fprintd. Is there a way to make them run in parallel?
Biometric is a lower security (coming from security/monitoring). The password is the most secure way to get into a system, cause they will have to get it out of you with force (hitting you and keep you awake) while the fingerprint, even if your are passed out, they can get it.
As for pam - it won’t ask 2 questions at once. It will go through all configured methods sequentially and the first one that works and is configured as sufficient will be “allowed”.