Hey,
I’m trying to use my Nitrokey HSM with GnuPG in order to encrypt / decrypt a database content but I didn’t succeed to use it with gpg nor any other program. How can I do?
$ gpg2 --card-status
gpg: OpenPGP card not available: Not supported
Thank you for your help.
There is absolutly no solution to get it working with GnuPG? In particular by updating the firmware?
Moreover it is specified on the website that it can be used with gpgsm. However it doesn’t work. I created a RSA key inside it that I can use with pkcs11-tools. But when I try to use it with gpgsm it does not find the keys.
$ gpgsm --learn-card
...]
gpgsm: DBG: chan_3 -> LEARN --send
gpgsm: DBG: chan_3 <- S APPTYPE SC-HSM
gpgsm: DBG: chan_3 <- S SERIALNO xxxxxxxx 0
gpgsm: DBG: chan_3 <- S READER Nitrokey Nitrokey HSM (010000000000000000000000) 00 00
gpgsm: DBG: chan_3 <- OK
$ gpgsm -k
(it only list keys stored into my $HOME/.gnupg/pubring.kbx)Thank you in advance.
It is possible to use a Nitrokey HSM 2 with GPG using gnupg-pkcs11-scd, I’ve written a quick guide on how to setup things: