|
Size: 4775
Comment:
|
Size: 1640
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 1: | Line 1: |
| #format media Here you can find our howtos for setting up your computer to use your the Fellowship crypto card. |
#language en ## page was renamed from TechDocs/Card_howtos ## page was renamed from TechDoku/Card_howtos ## page was renamed from Migrated/Card_howtos |
| Line 4: | Line 6: |
| == Setting up your card reader on GNU/Linux (udev) == | {{{#!wiki warning '''Historical page''' |
| Line 6: | Line 9: |
| Alexander Finkenberger <afSPAMFILTER@fsfe.org>,Karsten Gerloff <gerloffSPAMFILTER@fsfe.org>,Fernanda Weiden <nandaSPAMFILTER@fsfe.org>,Georg Greve <greveSPAMFILTER@fsfe.org> | This page is largely historical. The FSFE does not offer smartcards any more. }}} |
| Line 8: | Line 12: |
| Friday 20 January 2006 | Here you can find our howtos for setting up your computer to use your the [[FellowshipSmartCard|Fellowship smart card]]. |
| Line 10: | Line 14: |
| This howto describes how to set up your smart card reader for use with the Fellowship crypto card on GNU/Linux systems using udev functionality. Please note: |
|
| Line 13: | Line 15: |
| This is only an introductory document, aimed at a generic hard- and software setting involving GNU/Linux. For a full-length description please see the full-length Fellowship crypto card Howto. If you run into problems specific to your GnuPG setup, you may want to read other GnuPG Howtos. What do you need to use the card? |
Basic setup: Of course, you need [[http://www.gnupg.org|GnuPG]], either `gpg` or `gpg2` will do. We recommend to install `gpg-agent` and `scdaemon` as well. Depending on your system, you may need to configure udev (or hotplug, its predecessor on older systems) to work with your card reader. If `gpg --card-status` (or `gpg2 --card-status`) shows your card’s contents on a freshly booted system, such configuration should not be necessary. * [[/CardreaderSetup | Quick setup for Linux systems]] * [[/CardreaderSetup_(udev)|Setting up your card reader on GNU/Linux (udev)]] * [[/CardreaderSetup_(hotplug)|Setting up your card reader on GNU/Linux (hotplug)]] |
| Line 16: | Line 20: |
| * A smart card reader. A list of tested readers can be found here. * Root privileges on your GNU/linux system. * GnuPG 1.4.2 or higher. |
|
| Line 20: | Line 21: |
| Setting up the card reader | Using the card: |
| Line 22: | Line 23: |
| First of all, you will need to download two files for udev and copy them to the udev configuration directories, in order to let it identify your card reader: | * [[/CardWithSubkeysUsingBackups|Using the card with subkeys (recommended)]] * [[/SshGnome|Getting gpg-agent and ssh to work on GNOME systems]] * [[/SshOpenSuse|Getting gpg-agent and ssh to work on OpenSUSE systems]] |
| Line 24: | Line 27: |
| * gnupg-ccid.rules * gnupg-ccid |
Outdated howtos: * [[/CardWithSubkeys|Using the card with your subkey without backups (not recommended)]] * [[/CardWithMainKey|Using the card with your main key (not recommended)]] |
| Line 27: | Line 31: |
| Now, open a terminal and become root (you will be asked for your root password): | Howtos for proprietary systems: * [[/WindowsXP|Using the card on Windows XP]] |
| Line 29: | Line 34: |
| $ su - | |
| Line 31: | Line 35: |
| On Ubuntu systems, you should run (and then you will be asked for the user password): $ sudo su - Then you will have to move the files from the directory you have saved them to, to the udev configuration directories: # cd /home/directory/where/you/saved/the/file (change for the right path) # cp gnupg-ccid.rules /etc/udev/gnupg-ccid.rules # cp gnupg-ccid /etc/udev/scripts/gnupg-ccid # chmod +x /etc/udev/scripts/gnupg-ccid # ln -s /etc/udev/gnupg-ccid.rules /etc/udev/rules.d/gnupg-ccid.rules All the configuration files are in the right place and with the right permissions by now. You will now create a group scard, give this group permission to access the smart card reader, and include the users who should have access to the card reader to this group. # addgroup scard # addgroup yourusername scard (change for the right username) # exit (to logout the root user) Done! Your smart card reader should be working now. If you want to take a look on what you have in your card, plug in the smart card reader, insert your Fellowship crypto card and type: $ gpg --card-status == Setting up your card reader on GNU/Linux (hotplug) == Alexander Finkenberger, Karsten Gerloff, Fernanda Weiden, Georg Greve - Monday 28 November 2005 '''This howto describes how to set up your smart card reader for use with the Fellowship crypto card on GNU/Linux systems using hotplug functionality.''' '''Please note:''' This is only an introductory document, aimed at a generic hard- and software setting involving GNU/Linux. For a full-length description please see the [http://www.gnupg.org/howtos/card-howto/en/smartcard-howto.html full-length Fellowship crypto card Howto]. If you run into problems specific to your GnuPG setup, you may want to read other GnuPG Howtos. === What do you need to use the card? === * A smart card reader. A list of tested readers can be found here. * Root privileges on your GNU/linux system. * GnuPG 1.4.2 or higher. ===Setting up the card reader === First of all, you will need to download two files for hotplug and copy them to the hotplug configuration directory, in order to let it identify your card reader: * gnupg-ccid.usermap * gnupg-ccid Now, open a terminal and become root (you will be asked for your root password): $ su - On Ubuntu systems, you should run (and then you will be asked for the user password): $ sudo su - Then you will have to move the files from the directory you have saved them to, to the hotplug configuration directory: # cd /home/directory/where/you/saved/the/file (change for the right path) # cp gnupg-ccid.usermap /etc/hotplug/usb/gnupg-ccid.usermap # cp gnupg-ccid /etc/hotplug/usb/gnupg-ccid # chmod +x /etc/hotplug/usb/gnupg-ccid All the configuration files are in the right place and with the right permissions by now. You will now create a group scard, give this group permission to access the smart card reader, and include the users who should have access to the card reader to this group. # addgroup scard # addgroup yourusername scard (change for the right username) # exit (to logout the root user) '''Done! Your smart card reader should be working now.''' If you want to take a look on what you have in your card, plug-in the smart card reader, insert your Fellowship crypto card, and type: $ gpg --card-status ''Feel free to to improve this howto!'' == Using the card with your main key (not recommended)== == Using your Card with subkeys only (recommended) == |
---- [[Category/HowTo]] |
Historical page
This page is largely historical. The FSFE does not offer smartcards any more.
Here you can find our howtos for setting up your computer to use your the Fellowship smart card.
Basic setup: Of course, you need GnuPG, either gpg or gpg2 will do. We recommend to install gpg-agent and scdaemon as well. Depending on your system, you may need to configure udev (or hotplug, its predecessor on older systems) to work with your card reader. If gpg --card-status (or gpg2 --card-status) shows your card’s contents on a freshly booted system, such configuration should not be necessary.
Using the card:
Outdated howtos:
Howtos for proprietary systems: