Differences

This shows you the differences between two versions of the page.

--- yubikey [2016/01/17 17:38]
ben created
+++ yubikey [2017/10/16 19:26] (current)
ben
@@ Line 3: / Line 3: @@
   * Yubikey 4 needs to be enabled for OTP+CCID+U2F+PGP modes concurrently: <code bash>
 sudo ykpersonalize -m86
-</code>
+</code> (Use ''-m85'' to disable OTP mode for nanos)
   * Setup udev rules to allow non-root access to the yubikey with GPG (Taken from [[https://finninday.net/wiki/index.php/Yubikey#create_udev_rule_for_yubikey]] and modified slightly for yubikey v4: <code text /etc/udev/rules.d/69-yubikey.rules>
 ACTION!="add|change", GOTO="yubico_end"
@@ Line 18: / Line 18: @@
 ACTION==”remove”, ENV{ID_VENDOR_ID}=”1050″, ENV{SUBSYSTEM}==”usb”, RUN+=”/usr/bin/pkill scdaemon”
 </code>
-  * Install and run the ''pscs-lite'' package; <code>
+  * Install and run the ''pscs-lite'' package; <code bash>
 equo install pcsc-lite
 systemctl enable --now pcscd.service
@@ Line 42: / Line 42: @@
   eval "$(/usr/bin/gpg-agent --daemon --enable-ssh-support --write-env-file ~/.gpg-agent-info)"
 fi
+</code>
+  * Generate the SSH public key string to go in ''~/.ssh/authorized_keys'' (or LDAP) using: <code bash>
+gpgkey2ssh <authentication subkey id>
 </code>

Sihnon wiki