BUPTCZQ comments

Results 5 comments of


                                            BUPTCZQ

KeeAgent support?

WinCryptSSHAgent is designed to use smartcard, i.e. Yubikey, to authenticate with SSH rather than using a local key file or KeePass.

Is it possible to use FIDO2 keys with this?

OpenSSH 8.2 has added support for FIDO/U2F: https://superuser.com/questions/1420840/ssh-authentication-with-fido2-yubico-security-key

Wincrypt is marked as potential malware during installation via chocolatey

I think it is a a false positive, WinCryptSSHAgent is built by github action.

No certificate in certmgr despite it being present on the key

Please try to use RSA2048 instead of ECCP384 to generate key pairs and certificates. Some settings may cause the ECC certificate to be unusable. See also: * https://docs.microsoft.com/en-us/windows/security/identity-protection/smart-cards/smart-card-certificate-requirements-and-enumeration * https://admx.help/?Category=Windows_10_2016&Policy=Microsoft.Policies.SmartCard::EnumerateECCCerts

PIN re-prompt behavior

You can change the slot you use or modify the PIN policy. A PIV-enabled YubiKey NEO holds 4 distinct slots for certificates and a YubiKey 4 & 5 holds 24,...