Yubico Forum ...visit our web-store at 2016-10-07T09:20:15+01:00 https://forum.yubico.com/feed.php?f=26&t=2449 2016-10-07T09:20:15+01:00 2016-10-07T09:20:15+01:00 https://forum.yubico.com/viewtopic.php?t=2449&p=9074#p9074 <![CDATA[Unable to transfer keys to card]]> UPDATE: Query Canceled.

___
ORIGINAL QUERY FOLLOWS
___

I have recently purchased my first Yubikey (neo) and I am trying to transfer a PGP key to it. I have followed two different Yubico guides, both of which result in a failure to transfer the keys to the card.

When I follow this guide, here is the terminal output:
(note I hid my name & email address with **** to stop it being picked up by SPAM bots but I entered a valid address at the time.)

Code:
gpg> toggle

sec  2048R/18B46FF0  created: 2016-10-06  expires: never     
ssb  2048R/A03FF247  created: 2016-10-06  expires: never     
ssb  2048R/0228F762  created: 2016-10-06  expires: never     
(1)  myname <****>

gpg> keytocard
Really move the primary key? (y/N) y
Signature key ....: 272B 33FB 85E6 C761 1BE1  05D5 FC93 402A B134 3CF6
Encryption key....: [none]
Authentication key: 033C BB29 D5FE 6B7A DD28  73C8 9A5A 6C1B 8FA3 FADA

Please select where to store the key:
   (1) Signature key
   (3) Authentication key
Your selection? 1
Key does not match the card's capability.
Your selection?


I also followed another guide, this, and I received a related error about transferring the keys to the card.

One thing I've noticed which may be relevant is a difference in my cardedit output compared to those I've seen in the guides.

If I type
Code:
gpg --card-edit
I get the following:
Code:
Application ID ...: D2760001240102000006048708320000
Version ..........: 2.0
Manufacturer .....: unknown
Serial number ....: 04870832
Name of cardholder: [not set]
Language prefs ...: [not set]
Sex ..............: unspecified
URL of public key : [not set]
Login data .......: [not set]
Signature PIN ....: forced
Key attributes ...: 0R 0R 0R
Max. PIN lengths .: 127 127 127
PIN retry counter : 3 3 3
Signature counter : 3
Signature key ....: 272B 33FB 85E6 C761 1BE1  05D5 FC93 402A B134 3CF6
      created ....: 2016-10-07 07:51:12
Encryption key....: [none]
Authentication key: 033C BB29 D5FE 6B7A DD28  73C8 9A5A 6C1B 8FA3 FADA
      created ....: 2016-10-07 07:51:29
General key info..: [none]


The piece of information that stands out to me is the key attributes
Code:
0R 0R 0R
. In the guides I've seen these attributes set to
Code:
2048R 2048R 2048R
. Is this relevant to my key transfer failure? If so, how can I solve it?

Does anyone have other advice about how I can resolve this problem? I have followed the guides to the letter and unfortunately I end up with these key transfer errors.

Statistics: Posted by gert45 — Fri Oct 07, 2016 9:20 am

]]>