password-img

Bypass pkexec password prompt for admin accounts

So, you want to bypass polkit password prompt in Linux Lite globally. There is a million and some reasons in terms of security why you should think twice before doing this but if you don’t want to be prompted for your admin password at all after login, then this is for you.

Let me stress out that this is not a recommended practice. I’m writing this in direct answer to a Linux Lite user question. Most applications (scripts) in Linux Lite uses pkexec (polkit) for authentication and elevation. Administrative tools which changes system files will always ask you for admin credentials to make any changes for obvious reasons. Lite Tweaks, for example, will ask you for authentication only once when running tasks which requires elevation as long as the application is not quitted. Irrespective, if you still want no polkit password prompt:

In Terminal:

~$ sudo touch /var/lib/polkit-1/localauthority/10-vendor.d/49-linuxlite_nopasswd_global.pkla
~$ gksu leafpad /var/lib/polkit-1/localauthority/10-vendor.d/49-linuxlite_nopasswd_global.pkla

Copy and paste the following text into the leafpad window that pop’d up:

[No pkexec password prompt for sudoers]
Identity=unix-group:sudo
Action=*
ResultActive=yes

The above rule assumes your account is in the sudo group. By default, when installing Linux Lite, your first account is added to the sudo (admin) group.

That’s all there is to it. Launch an application that previously prompted you for your password, e.g.: Install Updates, Synaptic, Lite Updates Notify, you name it… and verify you are not longer prompted for it. If you still get nagged about passwords after making the changes above mentioned, restart your computer and test again.

There are other sensible ways to archive a similar behavior based on applications rules instead of globally, so that admins only allow specific applications to run without password prompts. I may go over some of those options at a later time.

Did you find this post useful?

Buy Ralpy a coffee :)

Cheers all!

Related Post

Definitive fix for Linux Lite 3.x Menu Linux Lite's heavily customized Whisker menu wouldn't be such a problem if proper measures had been put in place during its development; or better sai...
Scheduled Tasks GUI for Linux Lite 3.x After my little rant about SSD TRIM in Linux Lite 3.x Series the other day, I put some energy towards finding a better solution to help users configur...
Apply basic security to your WordPress site As you probably know, Linux Mint website was compromised. From what has been said, the attacker found a WordPress vulnerability just "pocking around" ...

Leave a Reply