Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

docs: Add short HOWTO doc on Yubikey usage #494

Open
jku opened this issue Jan 12, 2023 · 3 comments
Open

docs: Add short HOWTO doc on Yubikey usage #494

jku opened this issue Jan 12, 2023 · 3 comments
Labels
docs

Comments

@jku
Copy link
Collaborator

jku commented Jan 12, 2023

We should document how Yubikeys are used. Things to mention

  • the required library (and that we've only tested with yubicos library)
  • how to create the signing key
  • PKCS11LIB env var required by the signer

A minimal document would be good

Some material exists in these issues/comments:
#472 (comment)
#229
@jku
Copy link
Collaborator Author

jku commented Mar 4, 2023

Turns out Yubikey Manager may be the most reasonable way to create a signing key:
https://github.com/jku/repository-playground/blob/main/playground/yubikey-manager.png

(I spent an hour fighting with yubico-piv-tool again yesterday, IMO it's buggy and complicated)

@lukpueh
Copy link
Member

lukpueh commented Mar 6, 2023

👍 I too used Yubikey Manager to initialize the Yubikey. But I can't remember an option to create the key.

@jku
Copy link
Collaborator Author

jku commented Mar 6, 2023

Go to Applications -> PIV -> Digital Signatures and click Generate. Then you get a wizard to choose keytypes etc

@lukpueh lukpueh added the docs label Nov 2, 2023
@lukpueh lukpueh added contribfest Issues for KubeCon EU contribfest and removed contribfest Issues for KubeCon EU contribfest labels Mar 14, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
docs
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jku @lukpueh