> i'm using pam_pkcs11 on Ubuntu 10.04 (GDM Login).
> The following line i have added to /etc/pam.d/gdm:
> auth sufficient pam_pkcs11.so
> is it possible configuring pam to get the username from pam_pkcs11
> (mapper) without clicking on username or
> typing it in (su / console login)
pam_pkcs11 can get the login name from the card. But I guess gdm will
not call the PAM stack if no login is given/selected.
I tried with login (text login on the console) and PAM is not called
if I just hit the Enter key.
I tried with a test application (blank provided with the Linux PAM
sources) and I can authenticate without giving my login:
$ LANG=C ./blank
==> called pam_start()
total time: 0,11289 seconds
Please insert your Smart card or enter your username.
login: <<<<<<<<<<<< no login given here.
Found the Smart card.
Welcome Ludovic Rousseau (User PIN)!
Smart card PIN:
==> called pam_authenticate()
total time: 4,944448 seconds
==> called pam_end()
total time: 4,944913 seconds