yubikey-luks-enroll
YubiKey two factor authentication for LUKS disks
Install
- All systems
-
curl cmd.cat/yubikey-luks-enroll.sh
- Debian
-
apt-get install yubikey-luks - Ubuntu
-
apt-get install yubikey-luks - Windows (WSL2)
-
sudo apt-get updatesudo apt-get install yubikey-luks - Raspbian
-
apt-get install yubikey-luks - Dockerfile
- dockerfile.run/yubikey-luks-enroll
yubikey-luks
YubiKey two factor authentication for LUKS disks
With this extension to the initramfs-tools, you can unlock a LUKS encrypted disk using your YubiKey as a second factor. The challenge-response mechanism of the YubiKey is used to generate a response based on a PIN/password you have to enter. Only the combination of the correct password and the matching YubiKey will generate a response, that is a valid key of the LUKS disk. Alternatively you can use any other LUKS passphrase when the YubiKey is not present.