Reauthenticate on password view is coming up for smart card users

Document ID : KB000095182
Last Modified Date : 09/05/2018
Show Technical Document Details
Question:
We have several PAM users who are logging in into PAM by using smartcard and therefore are not using a password. Smart card login to PAM works just fine for these users.

On the other hand we have create a password view policy which requires users to reauthenticate for a password view or autoconnect. This policy is assigned to a target account, and an access policy is created for the smart card users to view this target account from the access page in PAM.

When one of the smart card users is logging in into PAM and tries to access the target account, they get prompted to insert their password. Unfortunately this is not possible as they are smart card users and therefore they don't have a password.

Why is this happening and is there a solution for it ?
Environment:
CA PAM 3.X, 2.X (all versions and subversions)
Answer:
For the time being this is working as designed. This is considered a feature to be added to a future release of the product. The only possible solution as of yet is to not assign policies to reauthenticate on view to smart card users