| Yubico Forum https://forum.yubico.com/ |
|
| [Question] Importing X509 key and certificate https://forum.yubico.com/viewtopic.php?f=26&t=2408 |
Page 1 of 1 |
| Author: | Deever [ Thu Sep 01, 2016 7:15 pm ] |
| Post subject: | [Question] Importing X509 key and certificate |
Hi folks! I'm trying to import an X509 (RSA) key and its corresponding certificate to a Yubikey NEO. Given that the files were created with Code: openssl req -x509 -new -newkey rsa:2048 -days 1825 -nodes -subj '/CN=username' -keyout x509.key -out x509.crt I'm trying to import the data with Code: yubico-piv-tool -s 9a -i x509.key -a import-key yubico-piv-tool -s 9a -i x509.crt -a import-certificate getting the following error for both of the commands: Code: Failed authentication with the application. Same thing happens when I specify the (correct) PIN with -P. Any suggestions? Greetings, /dev |
|
| Author: | mouse008 [ Fri Sep 02, 2016 3:53 am ] |
| Post subject: | Re: [Question] Importing X509 key and certificate |
To import a key (and a cert) you need the management key (specified by "-k"), not the PIN. So naturally, authentication fails. |
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|