Hi,
Do someone use https://solokeys.com/ ?
Cheers
I do: (model: Solo USB-A).
1 Like
Thanks for explaining how it works. After testing, it is functional indeed 
The solokeys (as FIDO/U2F token) are supported by OpenSSH since OpenSSH 8.2 (released in February 2020). These keys allow to use the new public key types ecdsa-sk.
1 Like
I’m interested to use physical keys to store keys, certs and secrets and also to authenticate (using 2FA) on web services.
In the past, I heard about Nitrokey which seems really interesting. Do you have some opinion on this vendor vs Solokeys ?
1 Like
I am using two solokeys (Solo USB-A) since february 2019. One key is attached to my keychain. I didn’t encounter any particular problem with this key. The solokey could be more fragile than the nitrokey FIDO2 key. Both are open-source (hardware and software). There is a tiny solokey called somu.
At the beginning I needed to use Firefox nighlty but the key works now with a released version.
I was able to update the firmware of my solokey using the CLI. It looks like recent versions (Debian sid) of fwupd handle the solokeys! I don’t know if the udev rules (/lib/udev/rules.d/70-u2f.rules) provided by libu2f-udev package are sufficient, these udev rules could still be required.
Note that since OpenSSH 8.2, OpenSSH supports FIDO/U2F hardware authenticators.
1 Like
