From Fedora Project Wiki


Check if the System handles three incorrect attempts correctly


  1. Add a LDAP, IPA and AD user with passkey_mapping
  2. Setup SSSD client with FIDO2/passkey.

How to test

  1. When authenticating (using su), provide incorrect pin 3 times in a row

Expected Results

  1. The System should prompt rebooting the FIDO key (removing and reinserting)
  2. The System should not hang
  3. Providing correct PIN after re-inserting the key should succesfully authenticate the user