Re: nmtui "Could not activate connection: Insufficient privileges."

From: Bob Ham <rah settrans net>
To: Thomas Haller <thaller redhat com>
Cc: networkmanager-list gnome org
Subject: Re: nmtui "Could not activate connection: Insufficient privileges."
Date: Sat, 11 Jan 2020 13:02:51 +0000

On Fri, Jan 10, 2020 at 06:27:28PM +0100, Thomas Haller wrote:

On Wed, 2020-01-08 at 18:42 +0000, Bob Ham wrote:

I'm logged in over the network to a Debian machine, trying to run
nmtui
as my user to connect to a wireless network.  Unfortunately, I get
errors regarding privileges.

Firstly nmtui told me "Could not activate connection: Not authorized
to
control networking."  I added my user to the netdev group (and logged
out/logged in) but it didn't make a difference.


Just to confirm, it does work if you try it as root, right?


It does indeed work as root, yes.

Running `nmcli general permission' as my user gives:

PERMISSION                                                        VAL
UE
org.freedesktop.NetworkManager.enable-disable-network             yes
org.freedesktop.NetworkManager.enable-disable-wifi                yes
org.freedesktop.NetworkManager.enable-disable-wwan                yes
org.freedesktop.NetworkManager.enable-disable-wimax               yes
org.freedesktop.NetworkManager.sleep-wake                         yes
org.freedesktop.NetworkManager.network-control                    yes
org.freedesktop.NetworkManager.wifi.share.protected               yes
org.freedesktop.NetworkManager.wifi.share.open                    yes
org.freedesktop.NetworkManager.settings.modify.system             no
org.freedesktop.NetworkManager.settings.modify.own                yes
org.freedesktop.NetworkManager.settings.modify.hostname           yes
org.freedesktop.NetworkManager.settings.modify.global-dns         yes
org.freedesktop.NetworkManager.reload                             yes
org.freedesktop.NetworkManager.checkpoint-rollback                yes
org.freedesktop.NetworkManager.enable-disable-statistics          yes
org.freedesktop.NetworkManager.enable-disable-connectivity-check  yes


if you enable level=TRACE logging, NM should log something like

  <trace> [1578676939.6824] auth: call[19370]: 
CheckAuthorization(org.freedesktop.NetworkManager.network-control), subject=unix-process[pid=1353025, 
uid=1000, start=16774342]
  <trace> [1578676939.6994] auth: call[19370]: completed: authorized=1, challenge=0

does it? What does it say?


It does:

Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0165] auth: call[38]: 
CheckAuthorization(org.freedesktop.NetworkManager.network-control), subject=unix-process[pid=1229, uid=1000, 
start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1298] auth: call[38]: completed: authorized=1, 
challenge=0

and it also says:

Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0181] auth: call[41]: 
CheckAuthorization(org.freedesktop.NetworkManager.settings.modify.system), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1483] auth: call[41]: completed: authorized=0, 
challenge=0

which are taken from the following:

Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0135] auth: call[33]: 
CheckAuthorization(org.freedesktop.NetworkManager.enable-disable-network), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0141] auth: call[34]: 
CheckAuthorization(org.freedesktop.NetworkManager.sleep-wake), subject=unix-process[pid=1229, uid=1000, 
start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0148] auth: call[35]: 
CheckAuthorization(org.freedesktop.NetworkManager.enable-disable-wifi), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0153] auth: call[36]: 
CheckAuthorization(org.freedesktop.NetworkManager.enable-disable-wwan), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0159] auth: call[37]: 
CheckAuthorization(org.freedesktop.NetworkManager.enable-disable-wimax), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0165] auth: call[38]: 
CheckAuthorization(org.freedesktop.NetworkManager.network-control), subject=unix-process[pid=1229, uid=1000, 
start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0170] auth: call[39]: 
CheckAuthorization(org.freedesktop.NetworkManager.wifi.share.protected), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0175] auth: call[40]: 
CheckAuthorization(org.freedesktop.NetworkManager.wifi.share.open), subject=unix-process[pid=1229, uid=1000, 
start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0181] auth: call[41]: 
CheckAuthorization(org.freedesktop.NetworkManager.settings.modify.system), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0186] auth: call[42]: 
CheckAuthorization(org.freedesktop.NetworkManager.settings.modify.own), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0204] auth: call[43]: 
CheckAuthorization(org.freedesktop.NetworkManager.settings.modify.hostname), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0214] auth: call[44]: 
CheckAuthorization(org.freedesktop.NetworkManager.settings.modify.global-dns), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0223] auth: call[45]: 
CheckAuthorization(org.freedesktop.NetworkManager.reload), subject=unix-process[pid=1229, uid=1000, 
start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0234] auth: call[46]: 
CheckAuthorization(org.freedesktop.NetworkManager.checkpoint-rollback), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0244] auth: call[47]: 
CheckAuthorization(org.freedesktop.NetworkManager.enable-disable-statistics), subject=unix-process[pid=1229, 
uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.0253] auth: call[48]: 
CheckAuthorization(org.freedesktop.NetworkManager.enable-disable-connectivity-check), 
subject=unix-process[pid=1229, uid=1000, start=18014]
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1021] auth: call[33]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1078] auth: call[34]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1133] auth: call[35]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1188] auth: call[36]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1243] auth: call[37]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1298] auth: call[38]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1353] auth: call[39]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1408] auth: call[40]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1483] auth: call[41]: completed: authorized=0, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1540] auth: call[42]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1596] auth: call[43]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1650] auth: call[44]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1705] auth: call[45]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1760] auth: call[46]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1815] auth: call[47]: completed: authorized=1, 
challenge=0
Jan 10 18:17:21 chive NetworkManager[304]: <trace> [1578680241.1871] auth: call[48]: completed: authorized=1, 
challenge=0

Can anyone tell me what I have to do to authorise nmtui to make wifi
connections?


I don't know, it sounds right.

What version of NM is this?


network-manager 1.14.6-2+deb10u1


Thanks,

Bob

-- 
Bob Ham <rah settrans net>

for (;;) { ++pancakes; }

References:
- nmtui "Could not activate connection: Insufficient privileges."
  - From: Bob Ham
- Re: nmtui "Could not activate connection: Insufficient privileges."
  - From: Thomas Haller

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]