Sumit, If I manually set the XDG_RUNTIME_DIR for root pointing to my user's one it works:
[user@ipaclient][~]$ env|grep RUNTIME XDG_RUNTIME_DIR=/run/user/<UID> [user@ipaclient][~]$ su - Password: [root@ipaclient ~]# export XDG_RUNTIME_DIR=/run/user/<UID> [root@ipaclient ~]# p11tool --provider=/usr/lib64/pkcs11/p11-kit-client.so --list-tokens Token 0: URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=<REDACTED>;token=PIV_II Label: PIV_II Type: Hardware token Flags: RNG, Requires login Manufacturer: piv_II Model: PKCS#15 emulated Serial: <REDACTED> Module: _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org