Additional troubleshooting step and openbsd note
This commit is contained in:
parent
e772f61915
commit
2cc0f7101e
|
@ -55,6 +55,7 @@ If you have a comment or suggestion, please open an [issue](https://github.com/d
|
||||||
- [Copy public key to server](#copy-public-key-to-server)
|
- [Copy public key to server](#copy-public-key-to-server)
|
||||||
- [Connect with public key authentication](#connect-with-public-key-authentication)
|
- [Connect with public key authentication](#connect-with-public-key-authentication)
|
||||||
- [Requiring touch to authenticate](#requiring-touch-to-authenticate)
|
- [Requiring touch to authenticate](#requiring-touch-to-authenticate)
|
||||||
|
- [OpenBSD](#openbsd)
|
||||||
- [Troubleshooting](#troubleshooting)
|
- [Troubleshooting](#troubleshooting)
|
||||||
- [Yubikey OTP Mode and cccccccc....](#yubikey-otp-mode-and-cccccccc)
|
- [Yubikey OTP Mode and cccccccc....](#yubikey-otp-mode-and-cccccccc)
|
||||||
- [References](#references)
|
- [References](#references)
|
||||||
|
@ -1223,6 +1224,10 @@ To require a touch for the signing and encrypting keys as well:
|
||||||
|
|
||||||
The Yubikey will blink when it's waiting for the touch.
|
The Yubikey will blink when it's waiting for the touch.
|
||||||
|
|
||||||
|
### OpenBSD
|
||||||
|
|
||||||
|
On OpenBSD, you will need to install `pcsc-tools` and enable with `sudo rcctl enable pcscd`, then reboot in order to recognize the key.
|
||||||
|
|
||||||
# Troubleshooting
|
# Troubleshooting
|
||||||
|
|
||||||
- If you don't understand some option, read `man gpg`.
|
- If you don't understand some option, read `man gpg`.
|
||||||
|
@ -1245,6 +1250,8 @@ The Yubikey will blink when it's waiting for the touch.
|
||||||
|
|
||||||
- If you receive the error, `Error connecting to agent: No such file or directory` from `ssh-add -L`, the UNIX file socket that the agent uses for communication with other processes may not be set up correctly. On Debian, try `export SSH_AUTH_SOCK="/run/user/$UID/gnupg/S.gpg-agent.ssh"`
|
- If you receive the error, `Error connecting to agent: No such file or directory` from `ssh-add -L`, the UNIX file socket that the agent uses for communication with other processes may not be set up correctly. On Debian, try `export SSH_AUTH_SOCK="/run/user/$UID/gnupg/S.gpg-agent.ssh"`
|
||||||
|
|
||||||
|
- If you receive the error, `Permission denied (publickey)`, increase ssh verbosity with the `-v` flag and ensure the public key from the card is being offered: `Offering public key: RSA SHA256:abcdefg... cardno:00060123456`. If it is, ensure you are connecting as the right user on the target system, rather than as the user on the local system.
|
||||||
|
|
||||||
- If you totally screw up, you can [reset the card](https://developers.yubico.com/ykneo-openpgp/ResetApplet.html).
|
- If you totally screw up, you can [reset the card](https://developers.yubico.com/ykneo-openpgp/ResetApplet.html).
|
||||||
|
|
||||||
## Yubikey OTP Mode and cccccccc....
|
## Yubikey OTP Mode and cccccccc....
|
||||||
|
@ -1278,4 +1285,3 @@ The Yubikey has two configurations, one invoked with a short press, and the othe
|
||||||
<https://alexcabal.com/creating-the-perfect-gpg-keypair/>
|
<https://alexcabal.com/creating-the-perfect-gpg-keypair/>
|
||||||
|
|
||||||
<https://www.void.gr/kargig/blog/2013/12/02/creating-a-new-gpg-key-with-subkeys/>
|
<https://www.void.gr/kargig/blog/2013/12/02/creating-a-new-gpg-key-with-subkeys/>
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue