tag:gpgtools.tenderapp.com,2011-11-04:/discussions/problems/113767-gpgtools-fails-to-find-yubikeyGPGTools: Discussion 2021-10-19T19:07:43Ztag:gpgtools.tenderapp.com,2011-11-04:Comment/494213092021-10-05T20:07:54Z2021-10-05T20:16:33ZGPGTools fails to find yubikey<div><p>I try to setup a <a href="https://www.yubico.com/de/store/#for-professionals">YubiKey 5C NFC</a> together with GPGTools so that the private keys are stored on the Yubikey and the public key is available via http.</p>
<p>I follow the steps as described by <a href="https://support.yubico.com/hc/en-us/articles/360013790259-Using-Your-YubiKey-with-OpenPGP">Using Your YubiKey with OpenPGP</a>. But when I try to to sign and encrypt a file I get the GPGTools dialog with the text: <em>Please insert the card with serial number: 0006 17******</em> (Redacted last 6 digits).</p>
<p>When I run <code>gpg2 --card-status</code> I see the following:</p>
<pre>
<code>Reader ...........: Yubico YubiKey OTP FIDO CCID
Application ID ...: D******** REDACTED *************
Application type .: OpenPGP
Version ..........: 3.4
Manufacturer .....: Yubico
Serial number ....: 17******
Name of cardholder: [not set]
Language prefs ...: [not set]
Salutation .......:
URL of public key : http://localhost:9090/0087D47A.asc
Login data .......: [not set]
Signature PIN ....: not forced
Key attributes ...: rsa4096 rsa4096 rsa4096
Max. PIN lengths .: 127 127 127
PIN retry counter : 3 0 3
Signature counter : 0
KDF setting ......: off
Signature key ....: B588 E314 EF64 BE34 6136 000B DCD2 E6A7 0087 D47A
created ....: 2021-10-05 17:55:18
Encryption key....: 6FEC 210C 85E4 9092 11DC EC61 7DE7 2626 D621 596A
created ....: 2021-10-05 17:55:18
Authentication key: 7AB0 39D2 E7A3 5712 5ABA B1DE C209 4CF5 EAE0 A60D
created ....: 2021-10-05 19:33:33
General key info..: pub rsa4096/DCD2E6A70087D47A 2021-10-05 test (test) <test@example.com>
sec> rsa4096/DCD2E6A70087D47A created: 2021-10-05 expires: never
card-no: 0006 17******
ssb> rsa4096/7DE72626D621596A created: 2021-10-05 expires: never
card-no: 0006 17******
ssb> rsa4096/C2094CF5EAE0A60D created: 2021-10-05 expires: never
card-no: 0006 17******
ssb rsa4096/6876C0B303D80E89 created: 2021-10-05 expires: never</code>
</pre>
<p>For some reason the keys are references by <code>card-no: 0006 17******</code> which has the additional prefix <code>0006</code>.</p>
<p>Could you please help me why GPGTools cannot find the Yubikey although it is connected?</p>
<pre>
<code>gpg2 --version
gpg (GnuPG/MacGPG2) 2.2.27
libgcrypt 1.8.7</code>
</pre></div>paddoggtag:gpgtools.tenderapp.com,2011-11-04:Comment/494213092021-10-13T21:42:43Z2021-10-13T21:42:43ZGPGTools fails to find yubikey<div><p>Hi,</p>
<p>this is quite curious indeed.<br>
Could you try to sign a message using the following command and post its output?</p>
<pre>
<code>echo "Test" | gpg -sau DCD2E6A70087D47A --status-fd 1</code>
</pre>
<p>Thanks!</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/494213092021-10-16T10:17:21Z2021-10-16T10:17:21ZGPGTools fails to find yubikey<div><p>Hi Luke,<br>
When I dug a little deeper, I saw a mixed keyring setup of GnuPG < 2.1 and newer versions. I have now fully migrated to *.kbx and delete the legacy files.</p>
<p>And as of now, I got it working. I am not sure what the issue was, but exporting all keys and importing them into a clean environment fixed it.</p>
<p>Cheers</p></div>paddoggtag:gpgtools.tenderapp.com,2011-11-04:Comment/494213092021-10-19T19:07:40Z2021-10-19T19:07:40ZGPGTools fails to find yubikey<div><p>Hi,</p>
<p>thanks for the update. This is great news!</p>
<p>Glad this is solved for you. I'm closing this discussion. Should you need further assistance or have questions you can re-open this discussion here or open a new one any time.</p>
<p>Best,<br>
Steve</p></div>Steve