Managing Fingerprints With Yast - Novell LINUX ENTERPRISE SERVER 11 - SECURITY Manual

• Starting YaST and the YaST modules
• Starting an application with root permission: sudo or gnomesu
• Changing to a different user identity with su or su - username
NOTE: Fingerprint Reader Devices and Encrypted Home Directories
If you want to use a fingerprint reader device, you must not use encrypted
home directories (see Chapter 12, Managing Users with YaST (↑Deployment
Guide) for more information). Otherwise logging in will fail, because decrypting
during login is not possible in combination with an active fingerprint reader
device.

7.2 Managing Fingerprints with YaST

Procedure 7.1 Enabling Fingerprint Authentication
You can only use biometric authentication if PAM is configured accordingly. Usually,
this is done automatically during installation of the packages when the hardware check
detects a supported fingerprint reader. If not, manually enable the fingerprint support
in YaST as follows:
1 Start YaST and select Hardware > Fingerprint Reader.
2 In the configuration dialog, activate Use Fingerprint Reader and click Finish to
Now you can register a fingerprint for various users.
Procedure 7.2 Registering a Fingerprint
1 In YaST, click Security and Users > User Management to open the User and
2 Select the user for whom you want to register a fingerprint and click Edit.
3 On the Plug-Ins tab, select the fingerprint entry and click Launch to open the
110 Security Guide
save the changes and close the dialog.
Group Administration dialog. A list of users or groups in the system is displayed.
Fingerprint Configuration dialog.