Merge pull request #259 from iandstanley/patch-1

Script to switch between two Yubikeys with identical keys
author: drduh <github@duh.to> 2021-08-15 15:19:17 -0700
committer: GitHub <noreply@github.com> 2021-08-15 15:19:17 -0700
commit: fce12ceac5aee9b7fe690f976d019f6d8e3a2a15 (patch)
tree: aa6b3195c0fcd47a34f95cbf3ebd1f25f3475328 /switch-to-backup-yubikey
parent: Merge pull request #268 from reissmann/patch-1 (diff)
parent: Script to switch between two Yubikeys with identical keys (diff)
download: YubiKey-Guide-fce12ceac5aee9b7fe690f976d019f6d8e3a2a15.tar.gz
1 files changed, 23 insertions, 0 deletions
diff --git a/switch-to-backup-yubikey b/switch-to-backup-yubikey
new file mode 100644
index 0000000..e4d877a
--- /dev/null
+++ b/switch-to-backup-yubikey
@@ -0,0 +1,23 @@
+#!/bin/sh
+#
+# To make a duplicate Yubikey for GPG keys
+# 1. Insert Yubikey1
+# 2. Create keys/subkeys
+# 3. Run keytocard to transfer keys to Yubikey1
+# 4. QUIT WITHOUT SAVING!!!!! 
+#
+# This will leave the keys on the Yubikey but NOT change the 
+# GPG keyring to point to the Yubikey1 with a stub
+# 
+# 5. Insert Yubikey2
+# 6. Run keytocard to transfer keys to Yubikey2
+# 7. QUIT and SAVE to make GPG point it's stubs to Yubikey2
+#
+# Running any decrypt, auth or sign will now ask you to insert Yubikey2
+# To switch to Yubikey1 at any time run this script to force GPG 
+# to repoint the key stubs to the inserted Yubikey
+
+read -p "Insert the Yubikey you want to use ....  "   ignore
+echo "Switching GPG to backup Yubikey ..."
+
+gpg-connect-agent "scd serialno" "learn --force" /bye
author	drduh <github@duh.to>	2021-08-15 15:19:17 -0700
committer	GitHub <noreply@github.com>	2021-08-15 15:19:17 -0700
commit	fce12ceac5aee9b7fe690f976d019f6d8e3a2a15 (patch)
tree	aa6b3195c0fcd47a34f95cbf3ebd1f25f3475328 /switch-to-backup-yubikey
parent	Merge pull request #268 from reissmann/patch-1 (diff)
parent	Script to switch between two Yubikeys with identical keys (diff)
download	YubiKey-Guide-fce12ceac5aee9b7fe690f976d019f6d8e3a2a15.tar.gz