This shows you the differences between two versions of the page.
Next revision Both sides next revision | |||
wiki:advanced:authentication:passwordless-gpg-card [2010/01/12 21:52] h1 created |
wiki:advanced:authentication:passwordless-gpg-card [2010/01/15 19:44] h1 |
||
---|---|---|---|
Line 2: | Line 2: | ||
1. GPG card configuration: | 1. GPG card configuration: | ||
- | '' | + | < |
+ | user@x2goclient$ gpg --card-edit | ||
+ | </ | ||
+ | < | ||
Application ID ...: D2760001240102000000000000420000 | Application ID ...: D2760001240102000000000000420000 | ||
Version ..........: 2.0 | Version ..........: 2.0 | ||
Line 23: | Line 26: | ||
Authentication key: [none] | Authentication key: [none] | ||
General key info..: [none] | General key info..: [none] | ||
+ | </ | ||
+ | < | ||
Command> admin | Command> admin | ||
+ | </ | ||
+ | < | ||
Admin commands are allowed | Admin commands are allowed | ||
+ | </ | ||
+ | < | ||
Command> sex | Command> sex | ||
+ | </ | ||
+ | < | ||
Sex ((M)ale, (F)emale or space): M | Sex ((M)ale, (F)emale or space): M | ||
gpg: 3 Admin PIN attempts remaining before card is permanently locked | gpg: 3 Admin PIN attempts remaining before card is permanently locked | ||
Admin PIN | Admin PIN | ||
+ | </ | ||
+ | < | ||
Command> login | Command> login | ||
+ | </ | ||
+ | |||
+ | < | ||
Login data (account name): beispielb | Login data (account name): beispielb | ||
+ | </ | ||
+ | < | ||
Command> generate | Command> generate | ||
+ | </ | ||
+ | |||
+ | < | ||
Make off-card backup of encryption key? (Y/n) n | Make off-card backup of encryption key? (Y/n) n | ||
Line 91: | Line 112: | ||
sub | sub | ||
sub | sub | ||
+ | </ | ||
+ | < | ||
Command> quit | Command> quit | ||
+ | </ | ||
IMPORTANT: login Name is a name of user on remote system | IMPORTANT: login Name is a name of user on remote system | ||
+ | |||
2. Configuring ssh connection | 2. Configuring ssh connection | ||
Line 104: | Line 128: | ||
x2goclient pinentry-x2go is required | x2goclient pinentry-x2go is required | ||
- | user@x2goclient$ gpg-agent --enable-ssh-support --daemon | + | |
- | --pinentry-program / | + | < |
+ | user@x2goclient$ gpg-agent --enable-ssh-support --daemon --pinentry-program / | ||
+ | </ | ||
+ | |||
+ | < | ||
GPG_AGENT_INFO=/ | GPG_AGENT_INFO=/ | ||
SSH_AUTH_SOCK=/ | SSH_AUTH_SOCK=/ | ||
SSH_AGENT_PID=24620; | SSH_AGENT_PID=24620; | ||
+ | </ | ||
2.2. Export SSH environment variables (copy gpg-agent output in console) | 2.2. Export SSH environment variables (copy gpg-agent output in console) |