X2Go - everywhere@home

User Tools

Site Tools

Trace: passwordless-gpg-card
wiki:advanced:authentication:passwordless-gpg-card

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
wiki:advanced:authentication:passwordless-gpg-card [2010/01/15 19:44]
h1 		wiki:advanced:authentication:passwordless-gpg-card [2014/04/14 06:08] (current)
sunweaver [GPG card configuration]
Line 1: Line 1:
-x2goclient smart card HOWTO: +====== X2Go Client smartcard HowTo ====== 
-1. GPG card configuration:+ 
 +===== The concept of GnuPG smartcard authentication ===== 
 + 
 +FixMe 
 + 
 +===== GPG card configuration ===== 
  
 <code> <code>
Line 120: Line 126:
 IMPORTANT: login Name is a name of user on remote system IMPORTANT: login Name is a name of user on remote system
  
- 
-2. Configuring ssh connection 
-2.1. Starting gpg-agent with ssh support 
  
 Be sure, that pinentry-x2go is installed. For test purposes you can use Be sure, that pinentry-x2go is installed. For test purposes you can use
Line 139: Line 142:
 </file> </file>
  
-2.2. Export SSH environment variables (copy gpg-agent output in console)+Export SSH environment variables (copy gpg-agent output in console) 
 + 
 +<code>
 user@x2goclient$ GPG_AGENT_INFO=/tmp/gpg-Xh4lY7/S.gpg-agent:24620:1; user@x2goclient$ GPG_AGENT_INFO=/tmp/gpg-Xh4lY7/S.gpg-agent:24620:1;
 export GPG_AGENT_INFO; export GPG_AGENT_INFO;
Line 145: Line 150:
 SSH_AUTH_SOCK; SSH_AUTH_SOCK;
 user@x2goclient$ SSH_AGENT_PID=24620; export SSH_AGENT_PID; user@x2goclient$ SSH_AGENT_PID=24620; export SSH_AGENT_PID;
 +</code>
  
-2.3. You can check the key on your smart card with command:+You can check the key on your smart card with command: 
 + 
 +<code>
 user@x2goclient$ ssh-add -l user@x2goclient$ ssh-add -l
-1024 ef:d5:8c:37:cb:38:01:8d:c2:30:00:ac:93:a2:43:98 cardno:000000000042 +</code>
-(RSA)+
  
-2.4. Copy public part of your key to remote computer+<file> 
 +1024 ef:d5:8c:37:cb:38:01:8d:c2:30:00:ac:93:a2:43:98 cardno:000000000042(RSA) 
 +</file> 
 + 
 +Copy public part of your key to remote computer 
 + 
 +<code>
 user@x2goclient$ ssh-copy-id beispielb@x2goserver user@x2goclient$ ssh-copy-id beispielb@x2goserver
 +</code>
 +
 +<file>
 beispielb@x2goserver's password: beispielb@x2goserver's password:
 +</file>
 +
 Now try logging into the machine, with "ssh 'beispielb@x2goserver'", and Now try logging into the machine, with "ssh 'beispielb@x2goserver'", and
 check in: check in:
  
 +<file>
  .ssh/authorized_keys  .ssh/authorized_keys
 +</file>
  
 to make sure we haven't added extra keys that you weren't expecting. to make sure we haven't added extra keys that you weren't expecting.
  
-2.5. Testing ssh connection+Testing ssh connection
  
 +<code>
 user@x2goclient$ ssh  beispielb@x2goserver user@x2goclient$ ssh  beispielb@x2goserver
 +</code>
 +
 +<file>
 Last login: Thu Sep 24 22:00:50 2009 from x2goclient Last login: Thu Sep 24 22:00:50 2009 from x2goclient
 +</file>
 +
 +<code>
 beispielb@x2goserver:~$ exit beispielb@x2goserver:~$ exit
 +</code>
  
 stop gpg-agent: stop gpg-agent:
 +
 +<code>
 user@x2goclient$ kill $SSH_AGENT_PID user@x2goclient$ kill $SSH_AGENT_PID
 +</code>
  
-3. Using smart card authentication with x2goclient+===== Start X2Go Client with GnuPG SmartCard Support =====
  
 +Using smart card authentication with x2goclient
 +
 +<code>
 user@x2goclient$ x2goclient --pgp-card user@x2goclient$ x2goclient --pgp-card
-or +</code> 
-user@x2goclient$ x2goclient_gtk --pgp-card+ 
wiki/advanced/authentication/passwordless-gpg-card.1263584650.txt.gz · Last modified: 2013/03/08 13:31 (external edit)

Page Tools

Imprint & Legal Disclaimer - Data Protection & Privacy Statement
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
GNU Free Documentation License 1.3 Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki