I have Pageant SC automatically start on startup, and have no problems connecting any of my PuTTY-compatible programs to it. Peter Koch has made a smartcard-enabled version of Pageant that Just Works, without configuration, and I have never needed to restart it after inserting my YubiKey. Before using a YubiKey, I used it as my standard SSH agent on Windows with an on-disk private key, and it worked well.ĭr. This agent lives in your system tray and handles authentication with your SSH private keys. PuTTY (and compatible programs, such as WinSCP and MobaXterm) use the Pageant SSH agent (included with PuTTY). Most of the software I use here is available with Scoop: scoop bucket add extras I use Scoop to install a lot of my Windows command line (and some GUI) utilities. I therefore cannot provide instructions for setting up the public and private keys without GPG. It also required custom editing of the configuration file to actually use my YubiKey.īut since I was using GPG4Win when I started, I used it to initialize the YubiKey's keys. I wrote a script to do that, but it was annoying. I commonly needed to restart the agent in order to make the public keys available again. This works, but I found gpg-agent to be less than reliable, particularly when I inserted and removed my key. Most existing documentation focuses on using the YubiKey with GPG4Win and gpg-agent's OpenSSH and Pageant compatibility layers. I occasionally use WSL, which induces yet a third set of requirements for connection. VS Code, however, only supports Windows OpenSSH for its remote sessions, so I need it to be able to connect as well. The first three can all be done with PuTTY, so as long as I can connect PuTTY to the smartcard, I'm good. Most of my local repositories are pulled over HTTPS, but a couple use SSH, and I use SSH (authenticated with a forwarded SSH agent connection) for all my repositories on servers. Remote shells via PuTTY, MobaXterm, or Windows OpenSSH.I use SSH in several places in my workflow: This page documents the pieces I need to put together in order to get it working on Windows with all of the different SSH interfaces I use: PuTTY, WinSCP, OpenSSH for Windows, and Git. Among its features, it supports being an an OpenPGP smartcard, which means - with some fiddling - it can be used for SSH authentication, so my SSH private key does not actually live on my physical computers. I use it to secure access to a number of web services I use, but also to authenticate myself over SSH. Published on Saturday, Octoand tagged with howto and tools.
0 kommentar(er)
