diff --git a/opencryptoki-3.11.0-warn-user-not-in-pkcs11-group.patch b/opencryptoki-3.11.0-warn-user-not-in-pkcs11-group.patch
new file mode 100644
index 0000000..756f55d
--- /dev/null
+++ b/opencryptoki-3.11.0-warn-user-not-in-pkcs11-group.patch
@@ -0,0 +1,13 @@
+diff -up opencryptoki-3.11.0/usr/sbin/pkcsconf/pkcsconf.c.me opencryptoki-3.11.0/usr/sbin/pkcsconf/pkcsconf.c
+--- opencryptoki-3.11.0/usr/sbin/pkcsconf/pkcsconf.c.me	2019-01-31 13:27:05.720647942 +0100
++++ opencryptoki-3.11.0/usr/sbin/pkcsconf/pkcsconf.c	2019-01-31 13:36:05.763624633 +0100
+@@ -1072,6 +1072,9 @@ CK_RV init(void)
+     if (rc != CKR_OK) {
+         printf("Error initializing the PKCS11 library: 0x%lX (%s)\n", rc,
+                p11_get_ckr(rc));
++        printf("Note: all non-root users that require access to PKCS#11 tokens "
++               "using opencryptoki must be assigned to the pkcs11 group to be "
++               "able to communicate with the pkcsslotd daemon.\n");
+         fflush(stdout);
+         cleanup();
+     }
diff --git a/opencryptoki.spec b/opencryptoki.spec
index 28cbdb3..7016131 100644
--- a/opencryptoki.spec
+++ b/opencryptoki.spec
@@ -1,15 +1,19 @@
 Name:			opencryptoki
 Summary:		Implementation of the PKCS#11 (Cryptoki) specification v2.11
 Version:		3.11.0
-Release:		2%{?dist}
+Release:		3%{?dist}
 License:		CPL
 URL:			http://sourceforge.net/projects/opencryptoki
 Source0:		https://github.com/opencryptoki/%{name}/archive/v%{version}/%{name}-%{version}.tar.gz
 # https://bugzilla.redhat.com/show_bug.cgi?id=732756
 Patch0:			opencryptoki-3.11.0-group.patch
-#1373833, change tmpfiles snippets from /var/lock/* to /run/lock/*
+
+# bz#1373833, change tmpfiles snippets from /var/lock/* to /run/lock/*
 Patch1:			opencryptoki-3.11.0-lockdir.patch
 
+# bz#1063763, inform the user that he is not in pkcs11 group
+Patch2:			opencryptoki-3.11.0-warn-user-not-in-pkcs11-group.patch
+
 # Use --no-undefined to debug missing symbols
 #Patch100:			%{name}-3.2-no-undefined.patch
 
@@ -301,6 +305,9 @@ fi
 
 
 %changelog
+* Tue Feb 19 2019 Than Ngo <than@redhat.com> - 3.11.0-3
+- Resolved #1063763 - opencryptoki tools should inform the user that he is not in pkcs11 group
+
 * Fri Feb 01 2019 Fedora Release Engineering <releng@fedoraproject.org> - 3.11.0-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild