Yubico Forum

Suggestion: AES key upload HOWTO for Linux
Page 1 of 1

Author:  tctovsli [ Thu Jul 15, 2010 11:32 am ]
Post subject:  Suggestion: AES key upload HOWTO for Linux

I want to reprogram my Yubikey and upload my AES-key according to this howto: http://www.yubico.com/developers/aeskeys/.
My only issue is that I'm running Linux, and I don't want to misconfigure my Yubikey since it's al.
I hoped someone with enough knowledge could make a short howto on how this is done using the CLI-tool for Linux? A quick explenation of the required settings and parameters would be great, or better yet: a short script for easing the process. ;)
Anyone up for the challenge?

Author:  tctovsli [ Mon Jul 19, 2010 9:39 am ]
Post subject:  Re: Suggestion: AES key upload HOWTO for Linux

It turned out to be not so very hard to reprogram the Yubikey after all:
ykpersonalize -1 -ofixed=h:ff{put in some random 10 HEX-digits here}  -ouid={put in some random 12 HEX-digits here} -v

In the code above, remove every { and }.
    -1 - Change the first configuration. Change this to '2' if you want to change configuration #2 instead.
    -ofixed - Public ID. If the key is in HEX-format (not modhex), the key should start with 'h:ff'. Else, if in modhex-format, it should start with 'vv'.
    -ouid - Private ID/UID.
This is just a summary of what is needed to make it work. When running this, you are asked to type in a passphrase that will be used to generate the AES-key. After this is done, make a copy of your AES-key and upload it to Yubico. :-)

Page 1 of 1 All times are UTC + 1 hour
Powered by phpBB® Forum Software © phpBB Group