Today we will look at a small tip, how to add YUBIKEY to our ssh-agent in Linux so that it doesn’t ask for password every time and authenticate the user automatically.
We have two options to authenticate every time we connect to a server using our Yubikey password.
OR, we can also add the yubikey to our ssh-agent daemon so that it automatically connects to the servers without asking for yubikey password.
Adding yubikey to ssh-agent
To add yubikey to ssh agent, we can use ykadd command.
user@ngelinux$ ykadd Enter PIN for 'YubiKey PKCS#2': user@ngelinux$
We can see the ykadd command man page to know how it added the yubikey to our ssh agent.
user@ngelinux$ man ykadd YKADD(1) BSD General Commands Manual YKADD(1) NAME ykadd -- add YubiKey to ssh-agent SYNOPSIS ykadd [-s] [-v] ykdel DESCRIPTION The ykadd command makes a YubiKey available through ssh-agent, allowing it to be used by ssh without further prompts for PIN. The YubiKey will remain available via ssh-agent until the user logs out or explicitly removes it using the ykdel command.