wiki:advanced:authentication:passwordless-gpg-card
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Last revision Both sides next revision | ||
|
wiki:advanced:authentication:passwordless-gpg-card [2010/01/15 19:44] h1 |
wiki:advanced:authentication:passwordless-gpg-card [2014/04/14 06:07] sunweaver |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | x2goclient smart card HOWTO: | + | ====== X2Go Client smartcard HowTo ====== |
| - | 1. GPG card configuration: | + | |
| + | ===== The concept of GnuPG smartcard authentication ===== | ||
| + | |||
| + | FixMe | ||
| + | |||
| + | ===== GPG card configuration | ||
| < | < | ||
| Line 120: | Line 126: | ||
| IMPORTANT: login Name is a name of user on remote system | IMPORTANT: login Name is a name of user on remote system | ||
| - | |||
| - | 2. Configuring ssh connection | ||
| - | 2.1. Starting gpg-agent with ssh support | ||
| Be sure, that pinentry-x2go is installed. For test purposes you can use | Be sure, that pinentry-x2go is installed. For test purposes you can use | ||
| Line 139: | Line 142: | ||
| </ | </ | ||
| - | 2.2. Export SSH environment variables (copy gpg-agent output in console) | + | Export SSH environment variables (copy gpg-agent output in console) |
| + | |||
| + | < | ||
| user@x2goclient$ GPG_AGENT_INFO=/ | user@x2goclient$ GPG_AGENT_INFO=/ | ||
| export GPG_AGENT_INFO; | export GPG_AGENT_INFO; | ||
| Line 145: | Line 150: | ||
| SSH_AUTH_SOCK; | SSH_AUTH_SOCK; | ||
| user@x2goclient$ SSH_AGENT_PID=24620; | user@x2goclient$ SSH_AGENT_PID=24620; | ||
| + | </ | ||
| - | 2.3. You can check the key on your smart card with command: | + | You can check the key on your smart card with command: |
| + | |||
| + | < | ||
| user@x2goclient$ ssh-add -l | user@x2goclient$ ssh-add -l | ||
| - | 1024 ef: | + | </ |
| - | (RSA) | + | |
| - | 2.4. Copy public part of your key to remote computer | + | < |
| + | 1024 ef: | ||
| + | </ | ||
| + | |||
| + | Copy public part of your key to remote computer | ||
| + | |||
| + | < | ||
| user@x2goclient$ ssh-copy-id beispielb@x2goserver | user@x2goclient$ ssh-copy-id beispielb@x2goserver | ||
| + | </ | ||
| + | |||
| + | < | ||
| beispielb@x2goserver' | beispielb@x2goserver' | ||
| + | </ | ||
| + | |||
| Now try logging into the machine, with "ssh ' | Now try logging into the machine, with "ssh ' | ||
| check in: | check in: | ||
| + | < | ||
| | | ||
| + | </ | ||
| to make sure we haven' | to make sure we haven' | ||
| - | 2.5. Testing ssh connection | + | Testing ssh connection |
| + | < | ||
| user@x2goclient$ ssh beispielb@x2goserver | user@x2goclient$ ssh beispielb@x2goserver | ||
| + | </ | ||
| + | |||
| + | < | ||
| Last login: Thu Sep 24 22:00:50 2009 from x2goclient | Last login: Thu Sep 24 22:00:50 2009 from x2goclient | ||
| + | </ | ||
| + | |||
| + | < | ||
| beispielb@x2goserver: | beispielb@x2goserver: | ||
| + | </ | ||
| stop gpg-agent: | stop gpg-agent: | ||
| + | |||
| + | < | ||
| user@x2goclient$ kill $SSH_AGENT_PID | user@x2goclient$ kill $SSH_AGENT_PID | ||
| + | </ | ||
| - | 3. Using smart card authentication with x2goclient | + | Using smart card authentication with x2goclient |
| + | < | ||
| user@x2goclient$ x2goclient --pgp-card | user@x2goclient$ x2goclient --pgp-card | ||
| + | </ | ||
| + | |||
| or | or | ||
| + | |||
| + | < | ||
| user@x2goclient$ x2goclient_gtk --pgp-card | user@x2goclient$ x2goclient_gtk --pgp-card | ||
| + | </ | ||
| + | |||
wiki/advanced/authentication/passwordless-gpg-card.txt · Last modified: 2014/04/14 06:08 by sunweaver
Imprint & Legal Disclaimer -
Data Protection & Privacy Statement
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3