1
0
mirror of https://github.com/drduh/YubiKey-Guide.git synced 2024-11-16 04:18:56 +00:00

Merge pull request #246 from whiskeysierra/patch-1

Update usage of ykman
This commit is contained in:
drduh 2021-05-31 16:21:24 +00:00 committed by GitHub
commit 21c0e03cd0
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -2511,33 +2511,33 @@ To require a touch for each key operation, install [YubiKey Manager](https://dev
Authentication:
```console
$ ykman openpgp set-touch aut on
$ ykman openpgp keys set-touch aut on
```
Signing:
```console
$ ykman openpgp set-touch sig on
$ ykman openpgp keys set-touch sig on
```
Encryption:
```console
$ ykman openpgp set-touch enc on
$ ykman openpgp keys set-touch enc on
```
Depending on how the YubiKey is going to be used, you may want to look at the policy options for each of these and adjust the above commands accordingly. They can be viewed with the following command:
```
$ ykman openpgp set-touch -h
Usage: ykman openpgp set-touch [OPTIONS] KEY POLICY
$ ykman openpgp keys set-touch -h
Usage: ykman openpgp keys set-touch [OPTIONS] KEY POLICY
Set touch policy for OpenPGP keys.
KEY Key slot to set (sig, enc, aut or att).
POLICY Touch policy to set (on, off, fixed, cached or cached-fixed).
The touch policy is used to require user interaction for all operations using the private key on the YubiKey. The touch policy is set indivdually for each key slot. To see the current touch policy, run
The touch policy is used to require user interaction for all operations using the private key on the YubiKey. The touch policy is set individually for each key slot. To see the current touch policy, run
$ ykman openpgp info