javalsai/lidm
0
1
Fork 0
mirror of https://github.com/javalsai/lidm.git synced 2026-01-12 16:40:00 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
master
lidm/docs/yubikey.md
creations a7a1f42f0a feat: add support for fido yubikeys (#89) 
* add support for fido keybind

* add to themes

* fix clang format

* Update ui.c

* docs: add misc stuff about the yubikey

---------

Co-authored-by: javalsai <jvssxxi@gmail.com>
2025-12-13 21:37:58 +01:00

1.1 KiB
Raw Permalink Blame History

Yubikeys

Quick reference explaining how yubikeys work for now.

Enable

Yubikeys are disabled by default, to enable them activate a keybinding for it ([functions] fido) in the config file.

Note that pressing this configured keybinding has no difference from trying to log in with an empty password, there's virtually no difference.

pam_u2f must be configured with a registered key (pamu2fcfg).

Extra

All my yubikey knowledge comes from the pr that implemented this, please refer to it for extra details. Contributions to this documentation are welcome (explaining more in detail, potential issues... really anything that improves this).

Allegedly this pam module configuration should work:

#%PAM-1.0

auth sufficient pam_u2f.so cue
auth       requisite    pam_nologin.so
auth       include      system-local-login
account    include      system-local-login
session    include      system-local-login
password   include      system-local-login

Also, I recommend giving the arch wiki a read anyways.

Reference in New Issue View Git Blame Copy Permalink