I try to use
Nitrokey pro
NitrokeyApp 1.4.0
Firmware 0.11
Karten-Seriennummer 81a3
for ssh server login from Windows (putty) to FreeBSD. I have tried to apply the gpg-connect-agent for this purpose. On Startup “gpg-connect-agent.exe /bye” is run. I see a console windwow popping up. However, putty still asks for normal password login. As public key I tried to use
gpg --armor --export name@domain.de > authorized_keys
This file - it seem to be a GPG key - is written. But I need an SSH key.
However, this won’t work. The export fails:
gpg --export-ssh-key name@domain.de > authorized_keys
gpg: Schlüssel "name@domain.de" nicht gefunden: Mehrdeutiger Name
gpg: Schlüsselexport im SSH Format fehlgeschlagen: Mehrdeutiger Name
Why does this fail. Does the key file in the first case have the wrong format
and may this be the reason why the key login fails?
I wonder also why I’m not prompted for a password to unlock the Nitrokey.
Card status looks like (some data rendered anonymous):
gpg --card-status
Reader ...........: Nitrokey Nitrokey Pro 0
Application ID ...: D2760001240103030005000081A30000
Application type .: OpenPGP
Version ..........: 3.3
Manufacturer .....: ZeitControl
Serial number ....: 000081A3
Name of cardholder: [nicht gesetzt]
Language prefs ...: de
Salutation .......:
URL of public key : [nicht gesetzt]
Login data .......: [nicht gesetzt]
Signature PIN ....: zwingend
Key attributes ...: rsa4096 rsa4096 rsa4096
Max. PIN lengths .: 64 64 64
PIN retry counter : 3 0 3
Signature counter : 4
KDF setting ......: off
Signature key ....: XXXX XXXX XXXX XXXX XXXX XXXX XXXX XXXX XXXX XXXX
created ....: 2020-06-06 14:56:16
Encryption key....: XXXX XXXX XXXX XXXX XXXX XXXX XXXX XXXX XXXX XXXX
created ....: 2020-06-06 14:56:16
Authentication key: XXXX XXXX XXXX XXXX XXXX XXXX XXXX XXXX XXXX XXXX
created ....: 2020-06-06 14:56:16
General key info..: pub rsa4096/SSSSSSSSSSSSSSSS 2020-06-06 Joe Miller <name@domain.de>
sec> rsa4096/SSSSSSSSSSSSSSSS erzeugt: 2020-06-06 verfällt: niemals
Kartennummer:0005 000081A3
ssb> rsa4096/YYYYYYYYYYYYYYYY erzeugt: 2020-06-06 verfällt: niemals
Kartennummer:0005 000081A3
ssb> rsa4096/ZZZZZZZZZZZZZZZZ erzeugt: 2020-06-06 verfällt: niemals
Kartennummer:0005 000081A3