504584 – Kerberos Authention needs further permissions

Bug 504584 - Kerberos Authention needs further permissions

Summary: Kerberos Authention needs further permissions

Status:	REPORTED

Alias:	None

Product:	krdc
Classification:	Applications
Component:	RDP (other bugs)
Version First Reported In:	25.04.1
Platform:	Flatpak Linux

Importance:	NOR normal
Target Milestone:	---
Assignee:	Urs Wolfer

URL:
Keywords:

Depends on:
Blocks:

Reported:	2025-05-20 22:52 UTC by Matt
Modified:	2025-05-20 22:52 UTC (History)
CC List:	0 users

See Also:
Latest Commit:
Version Fixed/Implemented In:
Sentry Crash Report:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Matt 2025-05-20 22:52:06 UTC

SUMMARY
The default permissions on the KRDC flatpak are unable to authenticate RDP  Kerberos / Protected accounts in active directory, the app will simply crash.

adding the following permissions override seems to fix Kerberos auth.

flatpak override org.kde.krdc --env=KRB5CCNAME=KCM: --filesystem=/run/.heim_org.h5l.kcm-socket

STEPS TO REPRODUCE
1. connect RDP session with a protected / kerberos AD user
2. observer crash with no output to terminal

OBSERVED RESULT

Crash

EXPECTED RESULT

RDP session

ADDITIONAL INFORMATION

Can the extra permissions please be added to the flatpak by default?

flatpak override org.kde.krdc --env=KRB5CCNAME=KCM: --filesystem=/run/.heim_org.h5l.kcm-socket