I needed the solution to the same problem on 21.04 and, after some research, come up with this. I'm pretty sure this will work on 20.04. Note that it (probably) requires a reboot and that allowed users need to me in the group "users".
gpasswd -a myuser users
cat > /etc/polkit-1/localauthority.conf.d/52-headless.conf <<EoT
[Remote sessions exemption]
Identity=unix-group:users
Action=*
ResultAny=yes
ResultInactive=yes
ResultActive=yes
EoT
I'm using xRDP via GUI (Not sure the problem you're encountering if you are using SSH only?). Create one or both of these files and adjust accordingly.
Give permissions to run Thunar as admin via xRDP
nano /etc/polkit-1/localauthority/50-local.d/xrdp-thunar.pkla
[Authorize thunar for remote sessions]
Identity=unix-user:*
Action=org.xfce.thunar
ResultAny=auth_admin_keep
--OR-- for Gnome/Nautilus
nano /etc/polkit-1/localauthority/50-local.d/10-remote-admin-allow.pkla
[Allow Remote Admin]
Identity=unix-group:sudo
Action=*
ResultAny=auth_admin_keep
ResultInactive=auth_admin_keep
ResultActive=auth_admin_keep
Hey, folks -- I'm getting up to speed on OpenSUSE, and I'm working on addressing one of the quirks that comes out of the box.
I'm accustomed to distributions where a wheel or sudo group can take adminsitrative actions as root; but the permissions model in OpenSUSE doesn't do that. Every subsystem responsible for authentication seems to assume that any user that wants to take action as root knows root's password. This is OK for a single-user desktop, but doesn't scale well if you have more than one administrator.
I've already fixed this in /etc/sudoers and kdesu, but there are still some applications that prompt for root's password instead of mine. These applications use PolicyKit for privilege escalation, and frankly I think I might be a little out of my depth trying to understand PolicyKit's byzantine configuration.
Has anyone ever tried to configure PolicyKit to prompt for your user password instead of root's? What changes do I need to make to enable this?