Comment 10 for bug 892680

Here's a good article on how to handle this for a freeIPA domain, but it should apply to any remote auth method.

https://www.happyassassin.net/2014/09/09/freeipa-setting-polkit-policykit-rules-for-users-make-your-user-a-polkit-administrator-on-your-clients/

I'm sure this is a bug though. It should try to authentication as root, instead of using some random user.