Hello,
I am trying to configure a key using tutorial:
https://www.yubico.com/2012/12/yubikey-neo-openpgp/ but unfortunately it seems my device is somehow locked (and PIN counter is 3 3 3 - so I am not sure if installing new applet is a solution).
Code:
13:11 $ gpg --card-edit
Application ID ...: D276xxxxxxxxxxxxxxxxxxxx30000
Version ..........: 2.0
Manufacturer .....: unknown
Serial number ....: 0xxxxxxx
Name of cardholder: [not set]
Language prefs ...: [not set]
Sex ..............: unspecified
URL of public key : [not set]
Login data .......: [not set]
Signature PIN ....: forced
Key attributes ...: 2048R 2048R 2048R
Max. PIN lengths .: 127 127 127
PIN retry counter : 1 3 3
Signature counter : 0
Signature key ....: [none]
Encryption key....: [none]
Authentication key: [none]
General key info..: [none]
gpg/card> admin
Admin commands are allowed
gpg/card> passwd
gpg: OpenPGP card no. D2760001240102000006045288830000 detected
1 - change PIN
2 - unblock PIN
3 - change Admin PIN
4 - set the Reset Code
Q - quit
Your selection? 1
gpg: sending command `SCD PASSWD' to agent failed: ec=6.131
Error changing the PIN: general error
Same happens when I try to generate the keys or change the admin password. What I should do?
I am using Ubuntu Trusty 14.04.
Not sure if this does matter, but:
Code:
13:28 $ pcsc_scan
PC/SC device scanner
V 1.4.22 (c) 2001-2011, Ludovic Rousseau <ludovic.rousseau@free.fr>
Compiled with PC/SC lite version: 1.8.10
Using reader plug'n play mechanism
Scanning present readers...
0: Yubico Yubikey NEO OTP+CCID 00 00
Tue Mar 1 13:28:20 2016
Reader 0: Yubico Yubikey NEO OTP+CCID 00 00
Card state: Card inserted, Exclusive Mode,
ATR: 3B XX XX XX
+ TS = 3B --> Direct Convention
+ T0 = FC, Y(1): 1111, K: 12 (historical bytes)
TA(1) = 13 --> Fi=372, Di=4, 93 cycles/ETU
43010 bits/s at 4 MHz, fMax for Fi = 5 MHz => 53763 bits/s
TB(1) = 00 --> VPP is not electrically connected
TC(1) = 00 --> Extra guard time: 0
TD(1) = 81 --> Y(i+1) = 1000, Protocol T = 1
-----
TD(2) = 31 --> Y(i+1) = 0011, Protocol T = 1
-----
TA(3) = FE --> IFSC: 254
TB(3) = 15 --> Block Waiting Integer: 1 - Character Waiting Integer: 5
+ Historical bytes: 59 75 62 69 6B 65 79 4E 45 4F 72 33
Category indicator byte: 59 (proprietary format)
+ TCK = E1 (correct checksum)
Possibly identified card (using /usr/share/pcsc/smartcard_list.txt):
NONE
find: `/home/bluszcz/.cache/smartcard_list.txt': No such file or directory
Your card is not present in the database.
Please submit your unknown card at:
http://smartcard-atr.appspot.com/parse?ATR=
Edit: After updating pcsc-tools from the ubuntu xenial package I am getting following:
Code:
Tue Mar 1 14:53:31 2016
Reader 0: Yubico Yubikey NEO OTP+CCID 00 00
Card state: Card removed, Exclusive Mode,
Scanning present readers...
Waiting for the first reader...found one
Scanning present readers...
0: Yubico Yubikey NEO OTP+CCID 00 00
Tue Mar 1 14:53:35 2016
Reader 0: Yubico Yubikey NEO OTP+CCID 00 00
Card state: Card inserted,
ATR: 3B FC 13 00 00 81 31 FE 15 59 75 62 69 6B 65 79 4E 45 4F 72 33 E1
ATR: 3B FC 13 00 00 81 31 FE 15 59 75 62 69 6B 65 79 4E 45 4F 72 33 E1
+ TS = 3B --> Direct Convention
+ T0 = FC, Y(1): 1111, K: 12 (historical bytes)
TA(1) = 13 --> Fi=372, Di=4, 93 cycles/ETU
43010 bits/s at 4 MHz, fMax for Fi = 5 MHz => 53763 bits/s
TB(1) = 00 --> VPP is not electrically connected
TC(1) = 00 --> Extra guard time: 0
TD(1) = 81 --> Y(i+1) = 1000, Protocol T = 1
-----
TD(2) = 31 --> Y(i+1) = 0011, Protocol T = 1
-----
TA(3) = FE --> IFSC: 254
TB(3) = 15 --> Block Waiting Integer: 1 - Character Waiting Integer: 5
+ Historical bytes: 59 75 62 69 6B 65 79 4E 45 4F 72 33
Category indicator byte: 59 (proprietary format)
+ TCK = E1 (correct checksum)
Possibly identified card (using /usr/share/pcsc/smartcard_list.txt):
3B FC 13 00 00 81 31 FE 15 59 75 62 69 6B 65 79 4E 45 4F 72 33 E1
YubiKey NEO (PKI)
http://www.yubico.com/
but still cannot make any operation on my NEO key.
Login
FAQ
Search
