Yubico Forum

...visit our web-store at store.yubico.com
It is currently Tue Jan 30, 2018 4:19 pm

All times are UTC + 1 hour




Post new topic Reply to topic  [ 3 posts ] 
Author Message
PostPosted: Mon May 02, 2016 4:24 pm 
Offline

Joined: Mon May 02, 2016 4:13 pm
Posts: 2
Hi all!

I configured my Yubikey 4 Nano with OTP secrets and a PGP key. Now I have the behaviour so that I can't use the OTP stuff if I have used the PGP feature before until reboot. As well, I can't use the PGP smart card feature if I have used the OTP feature before. Here an example:

# Newly booted system
# Let's look for the OTP keys
$ yubioath-cli
$ (...) Here comes the OTP keys. (...)

# Now let's try to read the PGP smart card
$ gpg --card-status
$ gpg: selecting openpgp failed: Card not present
$ gpg: OpenPGP card not available: Card not present

If I start with 'gpg --card-status' after reboot, then yubioath-cli can't find a Yubikey. I am running a Linux system.

Do you have any advice? I assume it's something with the USB modes? I tried to set the Yubikey on mode 6 (OTP/U2F/CCID) with 'ykpersonalize -m 6', but this didn't help (and I am not sure whether this is correct).

Thank you in advance for any help!

Greetings!


Top
 Profile  
Reply with quote  

Share On:

Share on Facebook FacebookShare on Twitter TwitterShare on Tumblr TumblrShare on Google+ Google+

PostPosted: Tue May 03, 2016 10:25 am 
Offline
Site Admin
Site Admin

Joined: Mon Dec 08, 2014 2:52 pm
Posts: 314
Could you please install the YubiKey Neo Manager

https://developers.yubico.com/yubikey-neo-manager/

and enable all modes.


Top
 Profile  
Reply with quote  
PostPosted: Tue May 03, 2016 10:41 am 
Offline

Joined: Mon May 02, 2016 4:13 pm
Posts: 2
What do you mean exactly by 'enable all modes'? I assume that you mean mode 6.

Here the output of the yubikey-neo-manager (ykneomgr):

# Yubikey mode
$ ykneomgr --get-mode
$ 06

# Readers on my machine
$ ykneomgr --list-readers
$ 0: Alcor Micro AU9560 00 00
$ 1: Yubico Yubikey 4 OTP+U2F+CCID 01 00

# Firmware version of the Yubikey
$ ykneomgr --get-version
$ 4.2.7

The --applet-list option throws an error. But I don't know whether this occurs because it's a Yubikey 4 and not a Neo.

# I am not sure what this is for. So I activated the debug mode.
$ ykneomgr -d --applet-list
$ Trying reader 0: Alcor Micro AU9560 00 00
$ SCardConnect 2148532236
$ Trying reader 1: Yubico Yubikey 4 OTP+U2F+CCID 01 00
$ --> 13: 00 a4 04 00 08 a0 00 00 05 27 20 01 01
$ <-- 12: 04 02 07 02 0a 02 06 0f 00 00 90 00
$ versionMajor 4
$ versionMinor 2
$ versionBuild 7
$ pgmSeq 2
$ touchLevel 2562
$ mode 06
$ crTimeout 15
$ autoEjectTime 0
$ --> 4: 00 01 10 00
$ <-- 6: 00 3f 6c 54 90 00
$ serialno 4156500
$ --> 13: 00 a4 04 00 08 a0 00 00 00 03 00 00 00
$ <-- 2: 6a 82
$ --> 13: 80 50 00 00 08 01 02 03 04 05 06 07 08
$ <-- 2: 6d 00
$ error: ykneomgr_authenticate (-4): Backend error

# The version of the Neo manager
$ ykneomgr --version
$ ykneomgr 0.1.8


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 3 posts ] 

All times are UTC + 1 hour


Who is online

Users browsing this forum: YahooSeeker [Bot] and 4 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group