Connecting from an Ubuntu 18.04 computer to a headless Lubuntu 18.04 computer using X11 forwarding. It works great for apps that don't require root privileges: lxterminal, leafpad, etc. I can run sudo commands in the forwarded lxterminal window just fine.
But, applications like synaptic-pkexec that would normally pop up the Authentication window and ask me to enter a password, fail, like so:
$ synaptic-pkexec
==== AUTHENTICATING FOR com.ubuntu.pkexec.synaptic ===
Authentication is required to run the Synaptic Package Manager
Authenticating as: [my realname],,, ([my username])
Password:
polkit-agent-helper-1: error response to PolicyKit daemon: GDBus.Error:org.freedesktop.PolicyKit1.Error.Failed: No session for cookie
==== AUTHENTICATION FAILED ===
Error executing command as another user: Not authorized
This incident has been reported.I supplied the correct password.
Is there a setting in sshd-config that governs this? What must I change to get this to work?
2 Answers
Suboptimal solution:
After sshing in with X11 forwarding, run
/usr/lib/policykit-1-gnome/polkit-gnome-authentication-agent-1 &
After that, synaptic-pkexec works great, the Authentication box pops up on the client computer and accepts my password.
You have to kill the authentication agent process before exiting the ssh session or it hangs, though.
I got the tip from here: but there it states that you can start the authentication agent on the server. That part didn't work for me, I got an error:
Cannot register authentication agent: GDBus.Error:org.freedesktop.PolicyKit1.Error.Failed: An authentication agent already exists for the given subjectSo this works, but is a bit clumsy.
Hoping for a better answer.
sudo -E synaptic-pkexecand
sudo --preserve-env=HOME synaptic-pkexecboth work for me.
1
