Neo Manager says:
| Attachments: |
 Screenshot-YubiKey NEO Manager (1.2.1).png [ 44.66 KiB | Viewed 3862 times ] |
| Yubico Forum https://forum.yubico.com/ |
|
| Neo and PIV-tool: Failed to connect to reader (Ubuntu Linux) https://forum.yubico.com/viewtopic.php?f=26&t=1965 |
Page 1 of 1 |
| Author: | rmeineke [ Wed Jul 15, 2015 9:59 am ] |
| Post subject: | Neo and PIV-tool: Failed to connect to reader (Ubuntu Linux) |
I have an older Yubikey Neo with firmware 3.1.2. Connection mode is set to OTP+CCID. I'm trying to get it set up for use with ssh following the instructions here: http://www.jupiterbroadcasting.com/8506 ... y-las-373/ opensc-tool seems to see the Neo fine: Code: robertm@Sys76:~$ opensc-tool --list-readers # Detected readers (pcsc) Nr. Card Features Name 0 Yes Yubico Yubikey NEO OTP+CCID 00 00 pcsc-scan seems to see the Neo: Code: robertm@Sys76:~$ pcsc_scan PC/SC device scanner V 1.4.23 (c) 2001-2011, Ludovic Rousseau <ludovic.rousseau@free.fr> Compiled with PC/SC lite version: 1.8.11 Using reader plug'n play mechanism Scanning present readers... 0: Yubico Yubikey NEO OTP+CCID 00 00 Tue Jul 14 05:19:00 2015 Reader 0: Yubico Yubikey NEO OTP+CCID 00 00 Card state: Card inserted, ATR: 3B FA 13 00 00 81 31 FE 15 59 75 62 69 6B 65 79 4E 45 4F A6 ATR: 3B FA 13 00 00 81 31 FE 15 59 75 62 69 6B 65 79 4E 45 4F A6 + TS = 3B --> Direct Convention + T0 = FA, Y(1): 1111, K: 10 (historical bytes) TA(1) = 13 --> Fi=372, Di=4, 93 cycles/ETU 43010 bits/s at 4 MHz, fMax for Fi = 5 MHz => 53763 bits/s TB(1) = 00 --> VPP is not electrically connected TC(1) = 00 --> Extra guard time: 0 TD(1) = 81 --> Y(i+1) = 1000, Protocol T = 1 ----- TD(2) = 31 --> Y(i+1) = 0011, Protocol T = 1 ----- TA(3) = FE --> IFSC: 254 TB(3) = 15 --> Block Waiting Integer: 1 - Character Waiting Integer: 5 + Historical bytes: 59 75 62 69 6B 65 79 4E 45 4F Category indicator byte: 59 (proprietary format) + TCK = A6 (correct checksum) Possibly identified card (using /usr/share/pcsc/smartcard_list.txt): 3B FA 13 00 00 81 31 FE 15 59 75 62 69 6B 65 79 4E 45 4F A6 Yubikey NEO And here is the ykinfo: Code: robertm@Sys76:~$ ykinfo -a serial: 2101626 serial_hex: 20117a serial_modhex: dcbbil version: 3.1.2 touch_level: 1541 programming_sequence: 1 slot1_status: 1 slot2_status: 0 vendor_id: 1050 product_id: 111 So here is the problem. When I run: Code: robertm@Sys76:~$ yubico-piv-tool -s 9a -a generate -o public.pem Failed to connect to reader. robertm@Sys76:~$ yubico-piv-tool -a status Failed to connect to reader. You can see the error. I'm stumped ... after 8+ hours of googling. Could this be due to my Neo's aging firmware or a misconfigured Linux box? I'm running a fairly stock Ubuntu Mate 15.04 (64-bit) system. Any help is appreciated. |
|
| Author: | Tom2 [ Wed Jul 15, 2015 2:02 pm ] |
| Post subject: | Re: Neo and PIV-tool: Failed to connect to reader (Ubuntu Li |
What does the NEO manager says ? |
|
| Author: | rmeineke [ Thu Jul 16, 2015 10:28 am ] | ||
| Post subject: | Re: Neo and PIV-tool: Failed to connect to reader (Ubuntu Li | ||
Neo Manager says:
|
|||
| Author: | Tom2 [ Thu Jul 16, 2015 10:35 am ] |
| Post subject: | Re: Neo and PIV-tool: Failed to connect to reader (Ubuntu Li |
Yes, so you have no PIV applet. You NEO is years old, there was no support for PIV yet. Is your device a development device? |
|
| Author: | rmeineke [ Thu Jul 16, 2015 12:52 pm ] |
| Post subject: | Re: Neo and PIV-tool: Failed to connect to reader (Ubuntu Li |
It's not a development unit. Just old. I bought it to replace my original non-Neo Yubikey shortly after the Neo line was announced. |
|
| Author: | darco [ Thu Jul 16, 2015 7:49 pm ] |
| Post subject: | Re: Neo and PIV-tool: Failed to connect to reader (Ubuntu Li |
Hey rmeineke, I'd be happy to buy that Neo off of you so that you can buy yourself a shiny new one. PM me if you are interested. I'd love to get my hands on a ykneo with known card management keys. |
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|