From 6d62489d791ee12fe43b7bcbfa846493c9fb1c30 Mon Sep 17 00:00:00 2001
From: Madhuri Upadhye <mupadhye@redhat.com>
Date: Fri, 12 May 2023 12:34:26 +0530
Subject: [PATCH] Tests: Add passkey test cases for following scenario.

  Test cases are as follows:
  4. Check auth deny for incorrect pin for LDAP, IPA, Ad and Samba.
  5. Check auth deny for incorrect passkey mapping for LDAP, IPA, AD and Samba.
  6. Check auth of user when server is not resolvable for IPA, LDAP, AD and Samba.

  First PR is under review, #6634

Signed-off-by: Madhuri Upadhye <mupadhye@redhat.com>
---
 .../passkey-mapping.ad                        |   1 +
 .../passkey-mapping.ipa                       |   1 +
 .../passkey-mapping.ldap                      |   1 +
 .../passkey-mapping.samba                     |   1 +
 .../umockdev.script.ad                        |   8 +
 .../umockdev.script.ipa                       |   8 +
 .../umockdev.script.ldap                      |   8 +
 .../umockdev.script.samba                     |   8 +
 .../passkey-mapping.ad                        |   1 +
 .../passkey-mapping.ipa                       |   1 +
 .../passkey-mapping.ldap                      |   1 +
 .../passkey-mapping.samba                     |   1 +
 .../umockdev.script.ad                        |  12 +
 .../umockdev.script.ipa                       |  12 +
 .../umockdev.script.ldap                      |  12 +
 .../umockdev.script.samba                     |  12 +
 .../passkey-mapping.ad                        |   1 +
 .../passkey-mapping.ipa                       |   1 +
 .../passkey-mapping.ldap                      |   1 +
 .../passkey-mapping.samba                     |   1 +
 .../umockdev.script.ad                        |  19 ++
 .../umockdev.script.ipa                       |  22 ++
 .../umockdev.script.ldap                      |  21 ++
 .../umockdev.script.samba                     |  24 ++
 src/tests/system/tests/test_passkey.py        | 256 ++++++++++++++++++
 25 files changed, 434 insertions(+)
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ad
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ipa
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ldap
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.samba
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ad
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ipa
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ldap
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.samba
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ad
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ipa
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ldap
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.samba
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ad
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ipa
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ldap
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.samba
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ad
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ipa
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ldap
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.samba
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ad
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ipa
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ldap
 create mode 100644 src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.samba
 create mode 100644 src/tests/system/tests/test_passkey.py

diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ad b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ad
new file mode 100644
index 00000000000..d3fd8436e84
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ad
@@ -0,0 +1 @@
+passkey:oducA9WSTrzBHX2gUKylRNl2PD2XCb4a7V0XJOtahqIX7wGcAugflvrVjbWG2JPTsLlVf+j/dmia7SNIVhK5AA==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEGEa7EktmUw4AOR6Y6r1W2zxXptQh3YaDNdvQEifZ3NpgRosVv+GS85uR3h6Ed1E7FtgfugwsZYeR8+9+GM6h8g==
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ipa b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ipa
new file mode 100644
index 00000000000..d3fd8436e84
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ipa
@@ -0,0 +1 @@
+passkey:oducA9WSTrzBHX2gUKylRNl2PD2XCb4a7V0XJOtahqIX7wGcAugflvrVjbWG2JPTsLlVf+j/dmia7SNIVhK5AA==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEGEa7EktmUw4AOR6Y6r1W2zxXptQh3YaDNdvQEifZ3NpgRosVv+GS85uR3h6Ed1E7FtgfugwsZYeR8+9+GM6h8g==
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ldap b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ldap
new file mode 100644
index 00000000000..e537dabdbcb
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.ldap
@@ -0,0 +1 @@
+passkey:aEgemlnC6a/WOoEZ8qU1YMwsTW9+uwmMsJnrgOXwTID0qIBHirzHp6d+e1d3WBhcSf7t9Ji8fl3AdSPtlbdN5Q==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAENwDQHwyZmnYaUEp0UNqqnw0tGOGnqOMBGdds6O3+JKbmmJGTn0vo7sKNNcDWDsFhJFU/RLWXmHXglxSo+yw9iQ==
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.samba b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.samba
new file mode 100644
index 00000000000..e537dabdbcb
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/passkey-mapping.samba
@@ -0,0 +1 @@
+passkey:aEgemlnC6a/WOoEZ8qU1YMwsTW9+uwmMsJnrgOXwTID0qIBHirzHp6d+e1d3WBhcSf7t9Ji8fl3AdSPtlbdN5Q==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAENwDQHwyZmnYaUEp0UNqqnw0tGOGnqOMBGdds6O3+JKbmmJGTn0vo7sKNNcDWDsFhJFU/RLWXmHXglxSo+yw9iQ==
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ad b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ad
new file mode 100644
index 00000000000..3f04d19aec5
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ad
@@ -0,0 +1,8 @@
+d 0 /dev/hidraw1
+
+w 4 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^A^[.ø^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 3 ^@^[.ø^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 ^[.ø^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secr^[.ø^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialM^[.ø^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢^[.ø^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 4 ^@^[.ø^@Œ^B¤^Agad.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@¡Ûœ^@^[.ø^@^CÕ’N¼Á^]} P¬¥DÙv<=—^I¾^Zí]^W$ëZ†¢^Wï^Aœ^Bè^_–úÕµ†Ø“Ó°¹Uèÿvhší#HV^R^@^[.ø^A¹^@dtypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 7 ^[.ø^@^A.^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ipa b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ipa
new file mode 100644
index 00000000000..8f1039f7cc1
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ipa
@@ -0,0 +1,8 @@
+d 0 /dev/hidraw1
+
+w 5 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^AÈ^L¼Ò^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 2 ^@È^L¼Ò^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 È^L¼Ò^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secrÈ^L¼Ò^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialMÈ^L¼Ò^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢È^L¼Ò^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@È^L¼Ò^@^B¤^Ahipa.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@¡Û^@È^L¼Ò^@œ^CÕ’N¼Á^]} P¬¥DÙv<=—^I¾^Zí]^W$ëZ†¢^Wï^Aœ^Bè^_–úÕµ†Ø“Ó°¹Uèÿvhší#HV^@È^L¼Ò^A^R¹^@dtypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 6 È^L¼Ò^@^A.^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ldap b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ldap
new file mode 100644
index 00000000000..4d9aa650c51
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.ldap
@@ -0,0 +1,8 @@
+d 0 /dev/hidraw1
+
+w 4 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^A£ÌÎì^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@£ÌÎì^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 £ÌÎì^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secr£ÌÎì^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialM£ÌÎì^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢£ÌÎì^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 2 ^@£ÌÎì^@‰^B¤^Adtest^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@hH^^šYÂ^@£ÌÎì^@é¯Ö:^Yò¥5`Ì,Mo~»^IŒ°™ë€åðL€ô¨€GŠ¼Ç§§~{WwX^X\Iþíô˜¼~]Àu#í•·Måd^@£ÌÎì^Atypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 7 £ÌÎì^@^A.^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.samba b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.samba
new file mode 100644
index 00000000000..dfff5d24fb5
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_mapping/umockdev.script.samba
@@ -0,0 +1,8 @@
+d 0 /dev/hidraw1
+
+w 2 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^A§‚+W^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@§‚+W^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 §‚+W^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secr§‚+W^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialM§‚+W^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢§‚+W^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 4 ^@§‚+W^@^B¤^Ajsamba.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@^@§‚+W^@hH^^šYÂé¯Ö:^Yò¥5`Ì,Mo~»^IŒ°™ë€åðL€ô¨€GŠ¼Ç§§~{WwX^X\Iþíô˜¼~]Àu#^@§‚+W^Aí•·Mådtypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 7 §‚+W^@^A.^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ad b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ad
new file mode 100644
index 00000000000..1091d550c1f
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ad
@@ -0,0 +1 @@
+passkey:KyF+ut3E2PHwuaQK/7fXo5ffpgp8IB1R+8WybEXhg9x9/Gl4T08CV5sT3FhaAN3HVJ3Jxren3mcg5fgwlKSlWA==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEO2opNUQmqFOGg5s7ONAvwuipDEnSVjqbuKAUS5wBgM8W5tUQACnIs3mNXoriBVNn4kfoyBy3lVHCNxiPh97IgA==
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ipa b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ipa
new file mode 100644
index 00000000000..915689bd654
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ipa
@@ -0,0 +1 @@
+passkey:NUZMRUXIb/W8Ij1GqwCDHSCWxt/SxWxckwtQjLYi/X6Y1qZFB+HI8WO6khzAjzsz248kHbaeAf9qfmqfCky1Jg==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEIasAa8ogjPCKXeA4KY3t0W3xBRmG+E4D+MNoRIAJrYuNLSYtAcOL7DCbIfgc+7c5Y4Mh/FzoEyeumKGYMoyTfg==
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ldap b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ldap
new file mode 100644
index 00000000000..82d76d9b590
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.ldap
@@ -0,0 +1 @@
+passkey:mQEUTWdtDJPELQNTDdxXNHlfIO1qXFf0LVZjWEfyDALFzvLZ4e4XD5bemqq+o3ThrzT6k1I1n3Z2N00GvLSmjQ==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEqk7K5VAI7Evr4ar8X82L/sxm/Bnm5Ti31xnLfGO0BipwHucw8+/wT4+6T9j5gdMwZKUcXR4BILpmULEyrcZUfw==
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.samba b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.samba
new file mode 100644
index 00000000000..7c59d41c14b
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/passkey-mapping.samba
@@ -0,0 +1 @@
+passkey:8Pob9IlseyKTRqxWtSB+4+nQmX/AioWH851f8u700UZhllaColWx5vCjfBBKuLORLKjbuW8OxCsSWFcPAUMvdA==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAElOYokAR0Co/jZYxMDOywmZgQKJFvTRyPj19XRhZndOt7+QEqCFgwYt73XxQakVrWyO+TNQbhTMp3Q5saz3s0hA==
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ad b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ad
new file mode 100644
index 00000000000..4283810b71d
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ad
@@ -0,0 +1,12 @@
+d 0 /dev/hidraw1
+
+w 3 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^A^H;ìï^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@^H;ìï^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ^H;ìï^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secr^H;ìï^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialM^H;ìï^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢^H;ìï^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@^H;ìï^@Œ^B¤^Agad.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@+!~^@^H;ìï^@ºÝÄØñð¹¤^Jÿ·×£—ß¦^J| ^]QûÅ²lEáƒÜ}üixOO^BW›^SÜXZ^@ÝÇTÉÆ·§Þg åø0”¤^@^H;ìï^A¥Xdtypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 82 ^H;ìï^@Ê^@£^A¢bidX@+!~ºÝÄØñð¹¤^Jÿ·×£—ß¦^J| ^]QûÅ²lEáƒÜ}üixOO^BW›^SÜXZ^@ÝÇ^H;ìï^@TÉÆ·§Þg åø0”¤¥Xdtypejpublic-key^BX%fCÈ£˜Ü€É½Ä5Â~ž^G^Aˆµ-YDàâ^H;ìï^AÊÙA‚Õ,K!^@^@^@^@^N^CXF0D^B wé'žÆGá¦9?^_H^O®_Ú.¥LÓœÙˆx".^Pæs*^L˜^B e<ÐXÅ^H;ìï^Bƒrÿb¨Ee3Âª…{À^EMü©^@tTK—Î^@a^W^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 7 ^@^H;ìï^@^F^F¢^A^B^B^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ^H;ìï^@Q^@¡^A¥^A^B^C8^X ^A!X t¡ÀV~œáòEWp¶C~$“zÎ>ÓGqu¿|˜^Wë^IÒwš"X íÉÔAåšæÔ^H;ìï^@n°^L}Œù®¯ñÔ~•2íèPæµ^G|±üë^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 7 ^@^H;ìï^@x^F¤^A^B^B^E^C¥^A^B^C8^X ^A!X 3–B˜1úË ^S×^\^Evû,Œ^P<Rijü§,QÞ\”éÕb"X [¹^M^J^@^H;ìï^@€G8²¬à»úžé‚ð˜†5ýúQ\^\^U™±^E·Q!^FX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^AV^`ÏŠ¾32ÅÑ^D\^@^H;ìï^A^Vpcx^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 315 ^H;ìï^@^A1^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ipa b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ipa
new file mode 100644
index 00000000000..46fee2c38a2
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ipa
@@ -0,0 +1,12 @@
+d 0 /dev/hidraw1
+
+w 3 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^Aœ†’%^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 2 ^@œ†’%^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 œ†’%^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secrœ†’%^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialMœ†’%^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢œ†’%^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 2 ^@œ†’%^@^B¤^Ahipa.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@5F^@œ†’%^@LEEÈoõ¼"=F«^@ƒ^] –ÆßÒÅl\“^KPŒ¶"ý~˜Ö¦E^GáÈñcº’^\À;3Û$^]¶ž^Aÿj~jŸ^J^@œ†’%^ALµ&dtypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 83 œ†’%^@Ë^@£^A¢bidX@5FLEEÈoõ¼"=F«^@ƒ^] –ÆßÒÅl\“^KPŒ¶"ý~˜Ö¦E^GáÈñcº’^\À;3œ†’%^@Û$^]¶ž^Aÿj~jŸ^JLµ&dtypejpublic-key^BX%œ^@î|¦®«DÚ–^Qx??†d^Q/N¨4¼/oœ†’%^ACôªŸ}.õ[^@^@^@^@D^CXG0E^B ^U^Dšª»·WÌÞq^RDíB^IU0@Æ^C*2^[mi^Næ¸˜þÊ^B!^@›ÊÈ—œ†’%^B^Qkº^ZÑ†m«±×^^^_^[à˜8^KlÐv^L]^Q—­jý^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 7 ^@œ†’%^@^F^F¢^A^B^B^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 œ†’%^@Q^@¡^A¥^A^B^C8^X ^A!X ZÄl¸õf/@j^D^Nr3–QnÞœ^V£èÉ„LixÀ4Þ¤¢Ý"X Þt^Aìð·^L¼œ†’%^@^_w^G^KÈz¥˜D^O^V^\»g¦·Xª^KÛ¨çeW^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 6 ^@œ†’%^@x^F¤^A^B^B^E^C¥^A^B^C8^X ^A!X 3–B˜1úË ^S×^\^Evû,Œ^P<Rijü§,QÞ\”éÕb"X [¹^M^J^@œ†’%^@€G8²¬à»úžé‚ð˜†5ýúQ\^\^U™±^E·Q!^FX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^AüiZ^C?Á^PR¢11´^@œ†’%^A¹†^P”^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 314 œ†’%^@^A1^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ldap b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ldap
new file mode 100644
index 00000000000..bba0c2e1679
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.ldap
@@ -0,0 +1,12 @@
+d 0 /dev/hidraw1
+
+w 3 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^A—˜ª¸^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@—˜ª¸^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 —˜ª¸^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secr—˜ª¸^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialM—˜ª¸^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢—˜ª¸^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@—˜ª¸^@‰^B¤^Adtest^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@™^A^TMgm^@—˜ª¸^@^L“Ä-^CS^MÜW4y_ íj\Wô-VcXGò^L^BÅÎòÙáî^W^O–Þšª¾£tá¯4ú“R5Ÿvv7M^F¼´¦d^@—˜ª¸^Atypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 83 —˜ª¸^@Ë^@£^A¢bidX@™^A^TMgm^L“Ä-^CS^MÜW4y_ íj\Wô-VcXGò^L^BÅÎòÙáî^W^O–Þšª¾£tá—˜ª¸^@¯4ú“R5Ÿvv7M^F¼´¦dtypejpublic-key^BX%Ÿ†ÐˆL}eš/ê ÅZÐ^U£¿O^[+^K‚,—˜ª¸^AÑ]l^U°ð^J^H^@^@^@^@^Q^CXG0E^B ^B’g§R+X×[6E]@º^J;Ôq«À­0Q$ôÕ^I^A;YÌ^B!^@—T }—˜ª¸^BÂâx‘7‚èG„^^8ëØ^]í^Iá/“íØÕ¾‘$"ª^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 5 ^@—˜ª¸^@^F^F¢^A^B^B^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 —˜ª¸^@Q^@¡^A¥^A^B^C8^X ^A!X ˆ^AÑâ^`ƒ5'K<:^RÀ^RP¤'órI2?^^É˜^GgîE¬s"X ZbË^F‰üNe—˜ª¸^@eçÇ^X0Wß^L›º^G)>)§°ø˜¡=0M^J¿^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 5 ^@—˜ª¸^@x^F¤^A^B^B^E^C¥^A^B^C8^X ^A!X 3–B˜1úË ^S×^\^Evû,Œ^P<Rijü§,QÞ\”éÕb"X [¹^M^J^@—˜ª¸^@€G8²¬à»úžé‚ð˜†5ýúQ\^\^U™±^E·Q!^FX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^AZ^\÷^K‰_’ß¹øá^Y^@—˜ª¸^AÃ^MëÕ^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 315 —˜ª¸^@^A1^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.samba b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.samba
new file mode 100644
index 00000000000..35306317d6a
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_fail_pin/umockdev.script.samba
@@ -0,0 +1,12 @@
+d 0 /dev/hidraw1
+
+w 3 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^A^\„k¿^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@^\„k¿^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ^\„k¿^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secr^\„k¿^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialM^\„k¿^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢^\„k¿^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@^\„k¿^@^B¤^Ajsamba.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@^@^\„k¿^@ðú^[ô‰l{"“F¬Vµ ~ãéÐ™ÀŠ…‡ó_òîôÑFa–V‚¢U±æð£|^PJ¸³‘,¨Û¹o^NÄ+^RXW^@^\„k¿^A^O^AC/tdtypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 83 ^\„k¿^@Ì^@£^A¢bidX@ðú^[ô‰l{"“F¬Vµ ~ãéÐ™ÀŠ…‡ó_òîôÑFa–V‚¢U±æð£|^PJ¸³‘^\„k¿^@,¨Û¹o^NÄ+^RXW^O^AC/tdtypejpublic-key^BX% ^S@^_£¤§nú1«næ;Qm\³<Ö´>‹^\„k¿^AÂ`^_—Wßó^@^@^@^@^S^CXH0F^B!^@ÈÝŸˆñDá€úî^D#øyZ^W§mT©^`ø¤ÿ·^`'”å/œ^X^B!^@³Û@^\„k¿^BGÈ°^\þnLî‚}^Wi]¢~ð$¯^Qå¿œ¹‰ð-ÑLÙ^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 7 ^@^\„k¿^@^F^F¢^A^B^B^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ^\„k¿^@Q^@¡^A¥^A^B^C8^X ^A!X ^H¥&I0n<¿?”^A^GÈxÁÿDË|Í'òb ß^_4°Ó€+k"X ¢dÑ.R6{/^\„k¿^@^Pˆ²:Ñe^E@˜^Cñë[^LŠI^H^M&·ÈÜ^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 7 ^@^\„k¿^@x^F¤^A^B^B^E^C¥^A^B^C8^X ^A!X 3–B˜1úË ^S×^\^Evû,Œ^P<Rijü§,QÞ\”éÕb"X [¹^M^J^@^\„k¿^@€G8²¬à»úžé‚ð˜†5ýúQ\^\^U™±^E·Q!^FX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^P=â>þ§^Rúò›r^@^\„k¿^A^Y•^V7^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 315 ^\„k¿^@^A1^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ad b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ad
new file mode 100644
index 00000000000..09d9143aa26
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ad
@@ -0,0 +1 @@
+passkey:gTCY4fqy2IkM6hfMpU338SCmA5YpDpggvE/XQzwbv37wlyYVlkbLRSmBtaq9c72pWYgICpP2pQ4nHRSFL2EnWg==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEOtoQygv+wabIV8/48bdy5d0Wx9+q3kMrgd1buJVaM5XZqccQIC8CGr2pE3dPui9HgDiXrMH9Jp0W37hzHkoN0Q==
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ipa b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ipa
new file mode 100644
index 00000000000..e529e2ee905
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ipa
@@ -0,0 +1 @@
+passkey:NUZMRUXIb/W8Ij1GqwCDHSCWxt/SxWxckwtQjLYi/X6Y1qZFB+HI8WO6khzAjzsz248kHbaeAf9qfmqfCky1Jg==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEIasAa8ogjPCKXeA4KY3t0W3xBRmG+E4D+MNoRIAJrYuNLSYtAcOL7DCbIfgc+7c5Y4Mh/FzoEyeumKGYMoyTfg==
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ldap b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ldap
new file mode 100644
index 00000000000..27dbfd9af40
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.ldap
@@ -0,0 +1 @@
+passkey:mQEUTWdtDJPELQNTDdxXNHlfIO1qXFf0LVZjWEfyDALFzvLZ4e4XD5bemqq+o3ThrzT6k1I1n3Z2N00GvLSmjQ==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEqk7K5VAI7Evr4ar8X82L/sxm/Bnm5Ti31xnLfGO0BipwHucw8+/wT4+6T9j5gdMwZKUcXR4BILpmULEyrcZUfw==
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.samba b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.samba
new file mode 100644
index 00000000000..dcb10169614
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/passkey-mapping.samba
@@ -0,0 +1 @@
+passkey:hC0IJlIg4qam+vV70L15N1a8xVgha+0S6G7Z8HgHmIgB9lKqxbMhd0PRdEgMbhLDr7wSKIGXLqz+SDL0SWwmMA==,MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEWSie9EywMxDpJFfZ0BxSTj6clviNWvRKTpBXS34TW+CtZnbYRBVmWTFX15gcNtyLI+tObWR0jcYmIoJGFy4oEQ==
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ad b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ad
new file mode 100644
index 00000000000..35230af49bc
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ad
@@ -0,0 +1,19 @@
+d 0 /dev/hidraw1
+
+w 4 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^A¯^Y^Zo^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@¯^Y^Zo^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ¯^Y^Zo^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secr¯^Y^Zo^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialM¯^Y^Zo^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢¯^Y^Zo^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 2 ^@¯^Y^Zo^@Œ^B¤^Agad.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@0˜^@¯^Y^Zo^@áú²Ø‰^Lê^WÌ¥M÷ñ ¦^C–)^N˜ ¼O×C<^[¿~ð—&^U–FËE)µª½s½©Yˆ^H^J“ö¥^N'^]^T…/a^@¯^Y^Zo^A'Zdtypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 82 ¯^Y^Zo^@Ë^@£^A¢bidX@0˜áú²Ø‰^Lê^WÌ¥M÷ñ ¦^C–)^N˜ ¼O×C<^[¿~ð—&^U–FËE)µª½s½©¯^Y^Zo^@Yˆ^H^J“ö¥^N'^]^T…/a'Zdtypejpublic-key^BX%fCÈ£˜Ü€É½Ä5Â~ž^G^Aˆµ-YDàâ¯^Y^Zo^AÊÙA‚Õ,K!^@^@^@^@^I^CXG0E^B!^@¹m\†^Cã!Âêt:ÖÃ|òú^^ÚÆÉQîS‰#l=¯ß^J^B z£'Ç¯^Y^Zo^B[?^\½Ó[Ø^R^FCBÖ_>p^Tö»e%¬ÃµÀp£j^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 5 ^@¯^Y^Zo^@^F^F¢^A^B^B^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ¯^Y^Zo^@Q^@¡^A¥^A^B^C8^X ^A!X Ý44”^X^K0@óºÅgÉ(¼^T¡^O„äZQÐÊå7¸^DëÞæo"X &Ái˜^\dÝf¯^Y^Zo^@^Oã^_^O^L*U.ƒ^Yûå€1Š`ÐoAwç¸È^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 5 ^@¯^Y^Zo^@x^F¤^A^B^B^E^C¥^A^B^C8^X ^A!X 3–B˜1úË ^S×^\^Evû,Œ^P<Rijü§,QÞ\”éÕb"X [¹^M^J^@¯^Y^Zo^@€G8²¬à»úžé‚ð˜†5ýúQ\^\^U™±^E·Q!^FX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A„Bá@DÂæM^@&Êº^@¯^Y^Zo^AÅÚ˜^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 79 ¯^Y^Zo^@5^@¡^BX0³$îQæ^B¯^G1„_‡`d“rÓ^MÆì3çkÇZ^J™DÜyQÑ«"ä-^QÔù ŽLå^J^Ro^^'^@^@^@^@
+w 4 ^@¯^Y^Zo^@±^B¦^Agad.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@0˜^@¯^Y^Zo^@áú²Ø‰^Lê^WÌ¥M÷ñ ¦^C–)^N˜ ¼O×C<^[¿~ð—&^U–FËE)µª½s½©Yˆ^H^J“ö¥^N'^]^T…/a^@¯^Y^Zo^A'Zdtypejpublic-key^E¡bupõ^FX ]×ÔuÖ€­^V–Æû€×)›e&¥$r¸ÞÆ^@*ék–>ù¿^@¯^Y^Zo^B^G^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 244 ¯^Y^Zo»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ¯^Y^Zo»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 290 ¯^Y^Zo»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ¯^Y^Zo»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ¯^Y^Zo»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ¯^Y^Zo»^@^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@¯^Y^Zo^@Ê^@£^A¢bidX@0˜áú²Ø‰^Lê^WÌ¥M÷ñ ¦^C–)^N˜ ¼O×C<^[¿~ð—&^U–FËE)µª½s½©¯^Y^Zo^@Yˆ^H^J“ö¥^N'^]^T…/a'Zdtypejpublic-key^BX%fCÈ£˜Ü€É½Ä5Â~ž^G^Aˆµ-YDàâ¯^Y^Zo^AÊÙA‚Õ,K!^E^@^@^@^M^CXF0D^B CŠpQÔl¡^SÑ];ï[(ýEÂi#{"ÐÊóBY^U¥ÏÜ¥^B^B ;']£>¯^Y^Zo^BçÚ^A^FŒ„^]?Œú¡u;à¿™ÅÒ^Uß„9þ•^O®^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ipa b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ipa
new file mode 100644
index 00000000000..1bc651a4465
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ipa
@@ -0,0 +1,22 @@
+d 0 /dev/hidraw1
+
+w 3 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^Aðp“†^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@ðp“†^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ðp“†^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secrðp“†^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialMðp“†^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢ðp“†^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@ðp“†^@^B¤^Ahipa.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@5F^@ðp“†^@LEEÈoõ¼"=F«^@ƒ^] –ÆßÒÅl\“^KPŒ¶"ý~˜Ö¦E^GáÈñcº’^\À;3Û$^]¶ž^Aÿj~jŸ^J^@ðp“†^ALµ&dtypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 83 ðp“†^@Ë^@£^A¢bidX@5FLEEÈoõ¼"=F«^@ƒ^] –ÆßÒÅl\“^KPŒ¶"ý~˜Ö¦E^GáÈñcº’^\À;3ðp“†^@Û$^]¶ž^Aÿj~jŸ^JLµ&dtypejpublic-key^BX%œ^@î|¦®«DÚ–^Qx??†d^Q/N¨4¼/oðp“†^ACôªŸ}.õ[^@^@^@^@^X^CXG0E^B!^@ým«$^MîêJ•à*–;\^V¿=tjÉx9ä´c™…Ð°,„^B kY“Úðp“†^B–^_^G’n˜rT": Ô*^L^Rw‡r]Âñ!½œZxf^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 5 ^@ðp“†^@^F^F¢^A^B^B^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 ðp“†^@Q^@¡^A¥^A^B^C8^X ^A!X ®^_9Óó;^CöÿûEÀBQ&µ±(WŠ3h¯^]F^AÌÜÀ%¯"X ^^sÃ5õ¬íöðp“†^@o6^@ËèþizdF mó+æá35º“€…Ü^P^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 5 ^@ðp“†^@x^F¤^A^B^B^E^C¥^A^B^C8^X ^A!X 3–B˜1úË ^S×^\^Evû,Œ^P<Rijü§,QÞ\”éÕb"X [¹^M^J^@ðp“†^@€G8²¬à»úžé‚ð˜†5ýúQ\^\^U™±^E·Q!^FX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A2aÃsÕ¹ì^T"tw^@ðp“†^Aªq^Kù^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 79 ðp“†^@5^@¡^BX0Ôñ±Þº^Y”‰<ÚÜøl¯^QÅ±k^B^A^`€^ZÐ^Gæ ^^^FcÞžÿ¯^SÝi^JŸþ^Er™ß¨†ê]^@^@^@^@
+w 1 ^@ðp“†^@²^B¦^Ahipa.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@5F^@ðp“†^@LEEÈoõ¼"=F«^@ƒ^] –ÆßÒÅl\“^KPŒ¶"ý~˜Ö¦E^GáÈñcº’^\À;3Û$^]¶ž^Aÿj~jŸ^J^@ðp“†^ALµ&dtypejpublic-key^E¡bupõ^FX ŸÈŽà‘R˜Js>ô æà7DB1 ófÞýç_Ð¾*Ê^@ðp“†^BL^G^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 285 ðp“†»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 290 ðp“†»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ðp“†»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ðp“†»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ðp“†»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 290 ðp“†»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ðp“†»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ðp“†»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 174 ðp“†^@Ë^@£^A¢bidX@5FLEEÈoõ¼"=F«^@ƒ^] –ÆßÒÅl\“^KPŒ¶"ý~˜Ö¦E^GáÈñcº’^\À;3ðp“†^@Û$^]¶ž^Aÿj~jŸ^JLµ&dtypejpublic-key^BX%œ^@î|¦®«DÚ–^Qx??†d^Q/N¨4¼/oðp“†^ACôªŸ}.õ[^E^@^@^@^\^CXG0E^B EÂõo’]Wk%ü^H$-žâ¬^W¼^BRû¾š›^`x¿^Pé×€^B!^@°Ñ‘qðp“†^BuÄÕù9\^ZK×R¢&>/ÍŽ¥Ù[`tÕÆ,Ô^^eg^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ldap b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ldap
new file mode 100644
index 00000000000..db026662951
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.ldap
@@ -0,0 +1,21 @@
+d 0 /dev/hidraw1
+
+w 4 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^A^S‘‹=^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 2 ^@^S‘‹=^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 ^S‘‹=^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secr^S‘‹=^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialM^S‘‹=^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢^S‘‹=^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 2 ^@^S‘‹=^@‰^B¤^Adtest^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@™^A^TMgm^@^S‘‹=^@^L“Ä-^CS^MÜW4y_ íj\Wô-VcXGò^L^BÅÎòÙáî^W^O–Þšª¾£tá¯4ú“R5Ÿvv7M^F¼´¦d^@^S‘‹=^Atypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 82 ^S‘‹=^@Ì^@£^A¢bidX@™^A^TMgm^L“Ä-^CS^MÜW4y_ íj\Wô-VcXGò^L^BÅÎòÙáî^W^O–Þšª¾£tá^S‘‹=^@¯4ú“R5Ÿvv7M^F¼´¦dtypejpublic-key^BX%Ÿ†ÐˆL}eš/ê ÅZÐ^U£¿O^[+^K‚,^S‘‹=^AÑ]l^U°ð^J^H^@^@^@^@^C^CXH0F^B!^@ñ¸ªñ9©}K:NÅ^M‡ó^PÐrÞaô¥X^D°^C™¹xÿM^B!^@ÿz^A^S‘‹=^B™ôŠ²³^P’+qÒ^@^P|^XªM$Fñáw^]6P3^[wßq^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 6 ^@^S‘‹=^@^F^F¢^A^B^B^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 ^S‘‹=^@Q^@¡^A¥^A^B^C8^X ^A!X Hü^GÑTàd^AÚ’8X^T<IÕEiwŸÖ¹I^Y^I^IFs”ÜºÊ"X <“‘^AHS¸^S‘‹=^@­·Ü6îÝ^N‡9½ªÌ^JU@ì€^\k)ó‚¤W^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 6 ^@^S‘‹=^@x^F¤^A^B^B^E^C¥^A^B^C8^X ^A!X 3–B˜1úË ^S×^\^Evû,Œ^P<Rijü§,QÞ\”éÕb"X [¹^M^J^@^S‘‹=^@€G8²¬à»úžé‚ð˜†5ýúQ\^\^U™±^E·Q!^FX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^AÆö–¶oYqgNu'^T^@^S‘‹=^A^U¶Ÿ^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 78 ^S‘‹=^@5^@¡^BX0Rí¡C^_K¹Í*ÔíëŠ"+f^`z;X¬O•§š@Ñ"MMü3\¯£L$Î‰¬Œ^Kñð+åM^@^@^@^@
+w 2 ^@^S‘‹=^@®^B¦^Adtest^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@™^A^TMgm^@^S‘‹=^@^L“Ä-^CS^MÜW4y_ íj\Wô-VcXGò^L^BÅÎòÙáî^W^O–Þšª¾£tá¯4ú“R5Ÿvv7M^F¼´¦d^@^S‘‹=^Atypejpublic-key^E¡bupõ^FX ( '^HŠ(ÝÄrZf2>Öž{ ò^_ÿu÷ÁLdÍõ^S„Ðã^G^B^@
+r 240 ^S‘‹=»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ^S‘‹=»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 290 ^S‘‹=»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ^S‘‹=»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ^S‘‹=»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 ^S‘‹=»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 290 ^S‘‹=»^@^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 28 ^S‘‹=^@Ê^@£^A¢bidX@™^A^TMgm^L“Ä-^CS^MÜW4y_ íj\Wô-VcXGò^L^BÅÎòÙáî^W^O–Þšª¾£tá^S‘‹=^@¯4ú“R5Ÿvv7M^F¼´¦dtypejpublic-key^BX%Ÿ†ÐˆL}eš/ê ÅZÐ^U£¿O^[+^K‚,^S‘‹=^AÑ]l^U°ð^J^H^E^@^@^@^G^CXF0D^B j8^M\Ø:H^O½Žþ@%Òqt(ÞÆ^\/ÕÇº~$$!¦>;^B už®¤š^S‘‹=^B{9í˜Ab¢F6^Xðsé5‚^K‹*¦¼ŸÃyw¨v^L^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.samba b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.samba
new file mode 100644
index 00000000000..c0e02fac1ba
--- /dev/null
+++ b/src/tests/system/data/test_passkey/test_passkey__su_srv_not_resolvable/umockdev.script.samba
@@ -0,0 +1,24 @@
+d 0 /dev/hidraw1
+
+w 4 ^@ÿÿÿÿ†^@^H^A^A^A^A^A^A^A^A^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 2 ÿÿÿÿ†^@^Q^A^A^A^A^A^A^A^Aj¥^JË^B^E^D^C^E^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 2 ^@j¥^JË^@^A^D^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 j¥^JË^@Ì^@¬^AƒfU2F_V2hFIDO_2_0lFIDO_2_1_PRE^B‚kcredProtectkhmac-secrj¥^JË^@et^CP/ÀWŸ^SGê±^V»Z¹ *^D¥brkõbupõdplatôiclientPinõucredentialMj¥^JË^AgmtPreviewõ^E^Y^D°^F‚^B^A^G^H^H^X€^I‚cnfccusb^J‚¢calg&dtypejpublic-key¢j¥^JË^Bcalg'dtypejpublic-key^M^D^N^Z^@^E^D^C^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 1 ^@j¥^JË^@^B¤^Ajsamba.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@^@j¥^JË^@„-^H&R â¦¦úõ{Ð½y7V¼ÅX!kí^RènÙðx^G˜ˆ^AöRªÅ³!wCÑtH^Ln^RÃ¯¼^R(—.¬þH2^@j¥^JË^AôIl&0dtypejpublic-key^E¡bupô^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 82 j¥^JË^@Ê^@£^A¢bidX@„-^H&R â¦¦úõ{Ð½y7V¼ÅX!kí^RènÙðx^G˜ˆ^AöRªÅ³!wCÑtH^Ln^RÃj¥^JË^@¯¼^R(—.¬þH2ôIl&0dtypejpublic-key^BX% ^S@^_£¤§nú1«næ;Qm\³<Ö´>‹j¥^JË^AÂ`^_—Wßó^@^@^@^@^I^CXF0D^B ^R^Q¶@^XÉvGB[9j+Þ^C$^P/^V^Q·dy^`‹–éÇ^B­s7^B )<»ÿƒj¥^JË^Bãå^V)ý¸ ‘¢]óª^A—¼n^@'^`á<^AM+‹fÞ^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 7 ^@j¥^JË^@^F^F¢^A^B^B^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 3 j¥^JË^@Q^@¡^A¥^A^B^C8^X ^A!X ¹n”UžÈ¯QR"½ö‚Õ^Mÿt^B•{©mpÙ^Sä!@0™¦"X VMæ^`¦^V­/j¥^JË^@ŠÚå^D±{øg\#Õ²öR8^B^P=!µëÑñ^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+w 6 ^@j¥^JË^@x^F¤^A^B^B^E^C¥^A^B^C8^X ^A!X 3–B˜1úË ^S×^\^Evû,Œ^P<Rijü§,QÞ\”éÕb"X [¹^M^J^@j¥^JË^@€G8²¬à»úžé‚ð˜†5ýúQ\^\^U™±^E·Q!^FX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^Aõ ùŸÆ^SÖ½q&ñ»^@j¥^JË^A"É‡Ñ^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 78 j¥^JË^@5^@¡^BX0ÎdïÊ^Td^_l¬^]ùRLªØëÎûwƒ^[^EÓ‰æéÎ^^/ÛæŒBe^H®+sòšß%µà•]é^@^@^@^@
+w 2 ^@j¥^JË^@´^B¦^Ajsamba.test^BX ^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^A^C¢bidX@^@j¥^JË^@„-^H&R â¦¦úõ{Ð½y7V¼ÅX!kí^RènÙðx^G˜ˆ^AöRªÅ³!wCÑtH^Ln^RÃ¯¼^R(—.¬þH2^@j¥^JË^AôIl&0dtypejpublic-key^E¡bupõ^FX Ø{RJŒÑ;½æÎ^U4Òý hºí^S˜Á–^L£¨T^]àz^@j¥^JË^Bñ^\œ^G^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 220 j¥^JË»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 291 j¥^JË»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 j¥^JË»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 287 j¥^JË»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 j¥^JË»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 288 j¥^JË»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 291 j¥^JË»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 287 j¥^JË»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 289 j¥^JË»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 287 j¥^JË»^@^A^B^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
+r 246 j¥^JË^@Ê^@£^A¢bidX@„-^H&R â¦¦úõ{Ð½y7V¼ÅX!kí^RènÙðx^G˜ˆ^AöRªÅ³!wCÑtH^Ln^RÃj¥^JË^@¯¼^R(—.¬þH2ôIl&0dtypejpublic-key^BX% ^S@^_£¤§nú1«næ;Qm\³<Ö´>‹j¥^JË^AÂ`^_—Wßó^E^@^@^@^L^CXF0D^B `øƒW¸o%^Q±Í&ò-”?“»g{^B_ã<@^V3ò@/lÁÖ^B I^Iô&j¥^JË^BH,ô\°é¸àÕD’Wà«^^¼÷pEKbáäøî^Y%^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
\ No newline at end of file
diff --git a/src/tests/system/tests/test_passkey.py b/src/tests/system/tests/test_passkey.py
new file mode 100644
index 00000000000..1510800f58b
--- /dev/null
+++ b/src/tests/system/tests/test_passkey.py
@@ -0,0 +1,256 @@
+"""
+Passkey Tests.
+
+:requirement: passkey
+"""
+
+from __future__ import annotations
+
+import pytest
+from sssd_test_framework.roles.client import Client
+from sssd_test_framework.roles.generic import GenericProvider
+from sssd_test_framework.roles.ipa import IPA
+from sssd_test_framework.topology import KnownTopology
+
+
+@pytest.mark.builtwith(client="passkey")
+@pytest.mark.importance("high")
+@pytest.mark.topology(KnownTopology.Client)
+def test_passkey__register__sssctl(client: Client, moduledatadir: str, testdatadir: str):
+    """
+    :title: Register a key with sssctl
+    :setup:
+        1. Setup IDM client with FIDO and umockdev setup
+    :steps:
+        1. Use sssctl to register a FIDO2 key.
+        2. Check the output.
+    :expectedresults:
+        1. New key is registered.
+        2. Output contains key mapping data.
+    :customerscenario: False
+    """
+    mapping = client.sssctl.passkey_register(
+        username="user1",
+        domain="ldap.test",
+        pin=123456,
+        device=f"{moduledatadir}/umockdev.device",
+        ioctl=f"{moduledatadir}/umockdev.ioctl",
+        script=f"{testdatadir}/umockdev.script",
+    )
+
+    with open(f"{testdatadir}/passkey-mapping") as f:
+        assert mapping == f.read().strip(), "Failed to register a key with sssctl"
+
+
+@pytest.mark.builtwith(client="passkey")
+@pytest.mark.builtwith(KnownTopology.IPA, ipa="passkey")
+@pytest.mark.importance("high")
+@pytest.mark.topology(KnownTopology.IPA)
+def test_passkey__register__ipa(ipa: IPA, moduledatadir: str, testdatadir: str):
+    """
+    :title: Register a passkey with the IPA command
+    :setup:
+        1. Setup IDM client with FIDO and umockdev setup.
+    :steps:
+        1. Use ipa command to register a FIDO2 key.
+        2. Check the output that contains the user key mapping data.
+    :expectedresults:
+        1. New key is registered with IPA command.
+        2. Output contains key mapping data.
+    :customerscenario: False
+    """
+    mapping = (
+        ipa.user("user1")
+        .add()
+        .passkey_add_register(
+            pin=123456,
+            device=f"{moduledatadir}/umockdev.device",
+            ioctl=f"{moduledatadir}/umockdev.ioctl",
+            script=f"{testdatadir}/umockdev.script",
+        )
+    )
+
+    with open(f"{testdatadir}/passkey-mapping") as f:
+        assert mapping == f.read().strip(), "Failed to register a key with the IPA command"
+
+
+@pytest.mark.builtwith(client="passkey")
+@pytest.mark.builtwith(KnownTopology.LDAP, ldap="passkey")
+@pytest.mark.builtwith(KnownTopology.IPA, ipa="passkey")
+@pytest.mark.importance("critical")
+@pytest.mark.topology(KnownTopology.LDAP)
+@pytest.mark.topology(KnownTopology.IPA)
+@pytest.mark.topology(KnownTopology.AD)
+@pytest.mark.topology(KnownTopology.Samba)
+def test_passkey__su(client: Client, provider: GenericProvider, moduledatadir: str, testdatadir: str):
+    """
+    :title: Check authentication of user with LDAP, IPA, AD and Samba
+    :setup:
+        1. Add a user in LDAP, IPA, AD and Samba with passkey_mapping.
+        2. Setup SSSD client with FIDO and umockdev, start SSSD service.
+    :steps:
+        1. Check authentication of the user.
+    :expectedresults:
+        1. User authenticates successfully.
+    :customerscenario: False
+    """
+    suffix = type(provider).__name__.lower()
+
+    if suffix == "ldap":
+        client.sssd.domain["local_auth_policy"] = "only"
+
+    with open(f"{testdatadir}/passkey-mapping.{suffix}") as f:
+        provider.user("user1").add().passkey_add(f.read().strip())
+
+    client.sssd.start()
+
+    assert client.auth.su.passkey(
+        username="user1",
+        pin=123456,
+        device=f"{moduledatadir}/umockdev.device",
+        ioctl=f"{moduledatadir}/umockdev.ioctl",
+        script=f"{testdatadir}/umockdev.script.{suffix}",
+    )
+
+
+@pytest.mark.builtwith(client="passkey")
+@pytest.mark.builtwith(KnownTopology.LDAP, ldap="passkey")
+@pytest.mark.builtwith(KnownTopology.IPA, ipa="passkey")
+@pytest.mark.importance("high")
+@pytest.mark.topology(KnownTopology.LDAP)
+@pytest.mark.topology(KnownTopology.IPA)
+@pytest.mark.topology(KnownTopology.AD)
+@pytest.mark.topology(KnownTopology.Samba)
+def test_passkey__su_fail_pin(client: Client, provider: GenericProvider, moduledatadir: str, testdatadir: str):
+    """
+    :title: Check authentication deny of user with LDAP, IPA, AD and Samba with incorrect pin
+    :setup:
+        1. Add a LDAP, IPA, AD and Samba user with passkey_mapping.
+        2. Setup SSSD client with FIDO and umockdev, start SSSD service.
+    :steps:
+        1. Check authentication of the user with incorrect PIN.
+    :expectedresults:
+        1. User failed to authenticate.
+    :customerscenario: False
+    """
+    suffix = type(provider).__name__.lower()
+
+    if suffix == "ldap":
+        client.sssd.domain["local_auth_policy"] = "only"
+
+    with open(f"{testdatadir}/passkey-mapping.{suffix}") as f:
+        provider.user("user1").add().passkey_add(f.read().strip())
+
+    client.sssd.start()
+
+    assert not client.auth.su.passkey(
+        username="user1",
+        pin=67890,
+        device=f"{moduledatadir}/umockdev.device",
+        ioctl=f"{moduledatadir}/umockdev.ioctl",
+        script=f"{testdatadir}/umockdev.script.{suffix}",
+    )
+
+
+@pytest.mark.builtwith(client="passkey")
+@pytest.mark.builtwith(KnownTopology.LDAP, ldap="passkey")
+@pytest.mark.builtwith(KnownTopology.IPA, ipa="passkey")
+@pytest.mark.importance("high")
+@pytest.mark.topology(KnownTopology.LDAP)
+@pytest.mark.topology(KnownTopology.IPA)
+@pytest.mark.topology(KnownTopology.AD)
+@pytest.mark.topology(KnownTopology.Samba)
+def test_passkey__su_fail_mapping(client: Client, provider: GenericProvider, moduledatadir: str, testdatadir: str):
+    """
+    :title: Check authentication deny of user with LDAP, IPA, AD and Samba with incorrect mapping
+    :setup:
+        1. Add a LDAP, IPA, AD and Samba user with passkey_mapping.
+        2. Setup SSSD client with FIDO and umockdev, start SSSD service.
+    :steps:
+        1. Check authentication of the user with incorrect passkey mapping.
+    :expectedresults:
+        1. User failed to authenticate.
+    :customerscenario: False
+    """
+    suffix = type(provider).__name__.lower()
+
+    if suffix == "ldap":
+        client.sssd.domain["local_auth_policy"] = "only"
+
+    with open(f"{testdatadir}/passkey-mapping.{suffix}") as f:
+        provider.user("user1").add().passkey_add(f.read().strip())
+
+    client.sssd.start()
+
+    assert not client.auth.su.passkey(
+        username="user1",
+        pin=123456,
+        device=f"{moduledatadir}/umockdev.device",
+        ioctl=f"{moduledatadir}/umockdev.ioctl",
+        script=f"{testdatadir}/umockdev.script.{suffix}",
+    )
+
+
+@pytest.mark.builtwith(client="passkey")
+@pytest.mark.builtwith(KnownTopology.LDAP, ldap="passkey")
+@pytest.mark.builtwith(KnownTopology.IPA, ipa="passkey")
+@pytest.mark.importance("high")
+@pytest.mark.topology(KnownTopology.LDAP)
+@pytest.mark.topology(KnownTopology.IPA)
+@pytest.mark.topology(KnownTopology.AD)
+@pytest.mark.topology(KnownTopology.Samba)
+def test_passkey__su_srv_not_resolvable(
+    client: Client, provider: GenericProvider, moduledatadir: str, testdatadir: str
+):
+    """
+    :title: Check authentication of a user with LDAP, IPA, AD and Samba when server is not resolvable
+    :setup:
+        1. Add a LDAP, IPA, AD and Samba user with passkey_mapping.
+        2. Setup SSSD client with FIDO and umockdev, start SSSD service.
+    :steps:
+        1. Check authentication of the user.
+        2. Update the server url and restart the sssd service to reflect the changes.
+        3. Check authentication of the user.
+    :expectedresults:
+        1. User authenticates successfully.
+        2. Successfully update the sssd.conf and restarted the sssd service.
+        3. User authenticates successfully due to cached data.
+    :customerscenario: False
+    """
+    suffix = type(provider).__name__.lower()
+    if suffix == "ipa":
+        server_url = "ipa_server"
+    elif suffix == "ldap":
+        server_url = "ldap_uri"
+        client.sssd.domain["local_auth_policy"] = "only"
+    elif suffix == "samba" or "ad":
+        server_url = "ad_server"
+    else:
+        assert False, "provider not found"
+
+    with open(f"{testdatadir}/passkey-mapping.{suffix}") as f:
+        provider.user("user1").add().passkey_add(f.read().strip())
+
+    client.sssd.start()
+
+    # First time check authentication to cache the user
+    assert client.auth.su.passkey(
+        username="user1",
+        pin=123456,
+        device=f"{moduledatadir}/umockdev.device",
+        ioctl=f"{moduledatadir}/umockdev.ioctl",
+        script=f"{testdatadir}/umockdev.script.{suffix}",
+    )
+
+    # Here we are making server/backend offline but not deleting cache and logs.
+    client.sssd.config.remove_option("domain/test", server_url)
+    client.sssd.domain[server_url] = "ldap://new.server.test"
+    client.sssd.start()
+
+    assert client.auth.su.passkey(
+        username="user1",
+        pin=123456,
+        device=f"{moduledatadir}/umockdev.device",
+        ioctl=f"{moduledatadir}/umockdev.ioctl",
+        script=f"{testdatadir}/umockdev.script.{suffix}",
+    )