daringer
commented
7 months ago The first issue: accessing the Nitrokey 3 while another FIDO2/U2F device is present should be solvable by also passing the specific device like that:
nitropy fido2 list-credentials -s device=/dev/hidraw11With the device being what is written in the first column in nitropy nk3 list. At least this is what works (for Linux) if you have connected more than one Nitrokey 3.
The other issue, the U2F register is pretty weird, also just tested this successfully on webauthn.io using 2x Nitrokey 3. Registering the device works with both devices and both will ask for the user confirmation (user presence) and the one which is confirmed will then be registered for the service.
On a first glance this looks like the Yubikey Neo does not behave as expected (defined by the spec). Although it has no FIDO2 capabilities it comes with U2F (which likely is also the reason the non-unique error is shown by nitropy) and my guess would be that this is roughly the same reason why registering won't work if both devices are plugged in.
jwgn
Hi,
I use a YubiKey NEO along with my NK3 (for static password and some sites which only support Yubico OTP).
As long as the Yubikey is connected to my PC, I am unable to interact with my NK3:
I am also unable to register the NK3 for U2F on any website.
When I remove the Yubikey, everythink works fine. Happens on
v1.5.0, just upgraded tov1.6.0-rc.1, same issue.Is this expected behaviour? The Yubikey NEO doesn't even support FIDO2.
Windows 11 23H2 (Build 22631.2715)