| Yubico Forum https://forum.yubico.com/ |
|
| YubiKey Certs https://forum.yubico.com/viewtopic.php?f=35&t=2392 |
Page 1 of 1 |
| Author: | skynet5 [ Tue Aug 09, 2016 4:26 pm ] |
| Post subject: | YubiKey Certs |
Hi, I have recently upgraded to YubiKey 4. My understanding was that I could put certificates on to the key using the PIV tool, and when I insert of the key Windows would automatically pull the certs from the key and put them in to my Personal Certificate store. I can add the certs to the key, but they are not automatically added to the Personal cert store on insertion. What am I misunderstanding on feature set or how it works? I also then expect, that when I use the cert, windows would interrupt and ask for my PIN and check that against the key. Any guidance/help would be much appreciated. Also...I have installed NEO manager (I know it is not a NEO) and that confirmed that CCID etc was already enabled. |
|
| Author: | ChrisHalos [ Wed Aug 10, 2016 12:39 am ] |
| Post subject: | Re: YubiKey Certs |
If you're on a domain-joined computer with functioning Certification Authority, yes, this is what should happen. This is covered in the documentation at https://www.yubico.com/support/documentation/ under the section "Using YubiKey PIV for Smart Card Login" (the five documents are intended to be followed in order, skipping any of #3 - #5 depending on what implementation method is used). This certainly isn't intended for a standalone home-user environment. Proper implementation in a domain environment would allow you to plug in the YubiKey 4 / NEO and either log in to your user account with it, or use it to remote connect to another domain-joined computer. |
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|