-
Notifications
You must be signed in to change notification settings - Fork 15
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
FIDO fails when requests to confirm on ssh, but works fine for ssh-keygen #22
Comments
I got it working using the command in this alias I made. You want it to use a specific key, and disregard what's loaded in the agent already. Also, this was good advice. Increased the speed of the windows hello popup. Now it's instant. |
For key generation i use following:
SSH_SK_PROVIDER=libwindowsfidobridge.so ssh-keygen -t ecdsa-sk -Oapplication=ssh:windows-fido-bridge-verify-required
Then it asks me to confirm the key, with success.
![image](https://user-images.githubusercontent.com/11144322/151018027-c92b266a-262a-4bd0-8bfa-ae3becf9f2b7.png)
![image](https://user-images.githubusercontent.com/11144322/151018048-2dc019cc-ddb1-4f3f-9e74-381fcb3afab8.png)
![image](https://user-images.githubusercontent.com/11144322/151018164-dc4c2fb6-a68f-421f-9b78-b5c297b99f24.png)
Then i add public key to the server, with
![image](https://user-images.githubusercontent.com/11144322/151018419-2c26978c-d5ec-43a3-8818-cf8f7b826429.png)
verify-required
before the key and save the fileAnd finally try to connect to my server via
![image](https://user-images.githubusercontent.com/11144322/151018934-1289e67e-3472-4d29-a67f-c2d82079303e.png)
ssh -oSecurityKeyProvider=libwindowsfidobridge.so *****@*.*.*.*
which results into this:
I use OnlyKey as a FIDO key, running debug multiple times shows no difference in the output.
The text was updated successfully, but these errors were encountered: