Do someone use ?


I do: (model: Solo USB-A).

1 Like

Thanks for explaining how it works. After testing, it is functional indeed :+1:

The solokeys (as FIDO/U2F token) are supported by OpenSSH since OpenSSH 8.2 (released in February 2020). These keys allow to use the new public key types ecdsa-sk.

1 Like

Hello @pilou and @loic,

I’m interested to use physical keys to store keys, certs and secrets and also to authenticate (using 2FA) on web services.

In the past, I heard about Nitrokey which seems really interesting. Do you have some opinion on this vendor vs Solokeys ?

1 Like

I am using two solokeys (Solo USB-A) since february 2019. One key is attached to my keychain. I didn’t encounter any particular problem with this key. The solokey could be more fragile than the nitrokey FIDO2 key. Both are open-source (hardware and software). There is a tiny solokey called somu.

At the beginning I needed to use Firefox nighlty but the key works now with a released version.
I was able to update the firmware of my solokey using the CLI. It looks like recent versions (Debian sid) of fwupd handle the solokeys! I don’t know if the udev rules (/lib/udev/rules.d/70-u2f.rules) provided by libu2f-udev package are sufficient, these udev rules could still be required.

Note that since OpenSSH 8.2, OpenSSH supports FIDO/U2F hardware authenticators.

1 Like

Hey @pilou,

Many thanks for your feedback :+1: