| Yubico Forum https://forum.yubico.com/ |
|
| [Q] Strange smart card behaviour https://forum.yubico.com/viewtopic.php?f=4&t=2297 |
Page 1 of 1 |
| Author: | stwu [ Mon May 02, 2016 4:24 pm ] |
| Post subject: | [Q] Strange smart card behaviour |
Hi all! I configured my Yubikey 4 Nano with OTP secrets and a PGP key. Now I have the behaviour so that I can't use the OTP stuff if I have used the PGP feature before until reboot. As well, I can't use the PGP smart card feature if I have used the OTP feature before. Here an example: # Newly booted system # Let's look for the OTP keys $ yubioath-cli $ (...) Here comes the OTP keys. (...) # Now let's try to read the PGP smart card $ gpg --card-status $ gpg: selecting openpgp failed: Card not present $ gpg: OpenPGP card not available: Card not present If I start with 'gpg --card-status' after reboot, then yubioath-cli can't find a Yubikey. I am running a Linux system. Do you have any advice? I assume it's something with the USB modes? I tried to set the Yubikey on mode 6 (OTP/U2F/CCID) with 'ykpersonalize -m 6', but this didn't help (and I am not sure whether this is correct). Thank you in advance for any help! Greetings! |
|
| Author: | Tom2 [ Tue May 03, 2016 10:25 am ] |
| Post subject: | Re: [Q] Strange smart card behaviour |
Could you please install the YubiKey Neo Manager https://developers.yubico.com/yubikey-neo-manager/ and enable all modes. |
|
| Author: | stwu [ Tue May 03, 2016 10:41 am ] |
| Post subject: | Re: [Q] Strange smart card behaviour |
What do you mean exactly by 'enable all modes'? I assume that you mean mode 6. Here the output of the yubikey-neo-manager (ykneomgr): # Yubikey mode $ ykneomgr --get-mode $ 06 # Readers on my machine $ ykneomgr --list-readers $ 0: Alcor Micro AU9560 00 00 $ 1: Yubico Yubikey 4 OTP+U2F+CCID 01 00 # Firmware version of the Yubikey $ ykneomgr --get-version $ 4.2.7 The --applet-list option throws an error. But I don't know whether this occurs because it's a Yubikey 4 and not a Neo. # I am not sure what this is for. So I activated the debug mode. $ ykneomgr -d --applet-list $ Trying reader 0: Alcor Micro AU9560 00 00 $ SCardConnect 2148532236 $ Trying reader 1: Yubico Yubikey 4 OTP+U2F+CCID 01 00 $ --> 13: 00 a4 04 00 08 a0 00 00 05 27 20 01 01 $ <-- 12: 04 02 07 02 0a 02 06 0f 00 00 90 00 $ versionMajor 4 $ versionMinor 2 $ versionBuild 7 $ pgmSeq 2 $ touchLevel 2562 $ mode 06 $ crTimeout 15 $ autoEjectTime 0 $ --> 4: 00 01 10 00 $ <-- 6: 00 3f 6c 54 90 00 $ serialno 4156500 $ --> 13: 00 a4 04 00 08 a0 00 00 00 03 00 00 00 $ <-- 2: 6a 82 $ --> 13: 80 50 00 00 08 01 02 03 04 05 06 07 08 $ <-- 2: 6d 00 $ error: ykneomgr_authenticate (-4): Backend error # The version of the Neo manager $ ykneomgr --version $ ykneomgr 0.1.8 |
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|