Additional troubleshooting step and openbsd note

This commit is contained in:
drduh 2018-04-29 14:50:06 -07:00 committed by GitHub
parent e772f61915
commit 2cc0f7101e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 7 additions and 1 deletions

View File

@ -55,6 +55,7 @@ If you have a comment or suggestion, please open an [issue](https://github.com/d
- [Copy public key to server](#copy-public-key-to-server) - [Copy public key to server](#copy-public-key-to-server)
- [Connect with public key authentication](#connect-with-public-key-authentication) - [Connect with public key authentication](#connect-with-public-key-authentication)
- [Requiring touch to authenticate](#requiring-touch-to-authenticate) - [Requiring touch to authenticate](#requiring-touch-to-authenticate)
- [OpenBSD](#openbsd)
- [Troubleshooting](#troubleshooting) - [Troubleshooting](#troubleshooting)
- [Yubikey OTP Mode and cccccccc....](#yubikey-otp-mode-and-cccccccc) - [Yubikey OTP Mode and cccccccc....](#yubikey-otp-mode-and-cccccccc)
- [References](#references) - [References](#references)
@ -1223,6 +1224,10 @@ To require a touch for the signing and encrypting keys as well:
The Yubikey will blink when it's waiting for the touch. The Yubikey will blink when it's waiting for the touch.
### OpenBSD
On OpenBSD, you will need to install `pcsc-tools` and enable with `sudo rcctl enable pcscd`, then reboot in order to recognize the key.
# Troubleshooting # Troubleshooting
- If you don't understand some option, read `man gpg`. - If you don't understand some option, read `man gpg`.
@ -1245,6 +1250,8 @@ The Yubikey will blink when it's waiting for the touch.
- If you receive the error, `Error connecting to agent: No such file or directory` from `ssh-add -L`, the UNIX file socket that the agent uses for communication with other processes may not be set up correctly. On Debian, try `export SSH_AUTH_SOCK="/run/user/$UID/gnupg/S.gpg-agent.ssh"` - If you receive the error, `Error connecting to agent: No such file or directory` from `ssh-add -L`, the UNIX file socket that the agent uses for communication with other processes may not be set up correctly. On Debian, try `export SSH_AUTH_SOCK="/run/user/$UID/gnupg/S.gpg-agent.ssh"`
- If you receive the error, `Permission denied (publickey)`, increase ssh verbosity with the `-v` flag and ensure the public key from the card is being offered: `Offering public key: RSA SHA256:abcdefg... cardno:00060123456`. If it is, ensure you are connecting as the right user on the target system, rather than as the user on the local system.
- If you totally screw up, you can [reset the card](https://developers.yubico.com/ykneo-openpgp/ResetApplet.html). - If you totally screw up, you can [reset the card](https://developers.yubico.com/ykneo-openpgp/ResetApplet.html).
## Yubikey OTP Mode and cccccccc.... ## Yubikey OTP Mode and cccccccc....
@ -1278,4 +1285,3 @@ The Yubikey has two configurations, one invoked with a short press, and the othe
<https://alexcabal.com/creating-the-perfect-gpg-keypair/> <https://alexcabal.com/creating-the-perfect-gpg-keypair/>
<https://www.void.gr/kargig/blog/2013/12/02/creating-a-new-gpg-key-with-subkeys/> <https://www.void.gr/kargig/blog/2013/12/02/creating-a-new-gpg-key-with-subkeys/>