arno/YubiKey-Guide
1
0
Fork 0
mirror of https://github.com/drduh/YubiKey-Guide.git synced 2025-01-02 19:10:53 +00:00
Code Issues Releases Wiki Activity

docs(wsl): Add usbipd in WSL setup

Browse Source 
Add usbipd-win library as an alternate method to accessing the yubikey since vuori/weasel-pageant is archived.
This commit is contained in:
Jeremy 2024-12-21 10:41:56 -05:00 committed by GitHub
parent 166f838a43
commit 66ceba96bd
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 20 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
README.md
View File

@ -1389,6 +1389,26 @@ Connect to the remote host and use `ssh-add -l` to confirm forwarding works.
Agent forwarding may be chained through multiple hosts. Follow the same [protocol](#remote-host-configuration) to configure each host.
An alternate method is the [usbipd-win](https://github.com/dorssel/usbipd-win) library. If you encounter issues with accessing the YubiKey in WSL after configuring usbipd-win, you may need to add custom polkit rules to ensure proper permissions for the pcscd service. Here's an example configuration using a scard group (the group logic is optional):
Create a new rule file at /etc/polkit-1/rules.d/99-pcscd.rules:
```bash
polkit.addRule(function(action, subject) {
if (action.id == "org.debian.pcsc-lite.access_card" &&
subject.isInGroup("scard")) {
return polkit.Result.YES;
}
});
polkit.addRule(function(action, subject) {
if (action.id == "org.debian.pcsc-lite.access_pcsc" &&
subject.isInGroup("scard")) {
return polkit.Result.YES;
}
});
```
### Replace agents
To launch `gpg-agent` for use by SSH, use the `gpg-connect-agent /bye` or `gpgconf --launch gpg-agent` commands.