1. Generate a FIDO2 SSH key
2. Copy the public key to your SSH server:
If ssh-copy-id is not available, manually append your public key to ~/.ssh/authorized_keys on the server.
3. Connect using your FIDO2 device:
Simply connect to your server using SSH:
ssh your_username@your_server
You might be prompted to touch your FIDO2 device to authenticate.
1. Enable OpenSSH Client:
2. Generate a FIDO2 SSH key (using WSL or PowerShell):
Run the same command as for Linux:
ssh-keygen -t ecdsa-sk -f ~/.ssh/id_ecdsa_sk
Touch your FIDO2 device as prompted to generate the key.
3. Copy the public key to the server:
If using WSL, you can use ssh-copy-id as in Linux.
From PowerShell, manually copy your public key text to ~/.ssh/authorized_keys on the server or use any SCP too
4. Connect using your FIDO2 device:
Open your SSH client (WSL, PowerShell, or PuTTY with FIDO2 support):
ssh your_username@your_server
Authenticate by touching your FIDO2 device when prompted.
This guide gives you a general approach to using SSH with a FIDO2 device across different operating systems. Depending on specific setups or device brands, additional steps might be needed.
© 2023 CRYPTNOX SA – 36 Avenue Cardinal Mermillod 1227 Geneva, Switzerland IDE : CHE-432.952.622