I want to to set up a gpg key for ssh authentication but I cant find the option to set own capabilities.
What is the correct way to do that?
So far the command line. gpg --edit-key <yourkey_name or fingerprint> and then add a subkey there you can chose the authenticate abiliity. In Kleopatra we do not have a proper subkey management yet since this is kind of an expert feature. We want to have it at some point but not in the next release.
(3) DSA (sign only)
(4) RSA (sign only)
(5) Elgamal (encrypt only)
(6) RSA (encrypt only)
(10) ECC (sign only)
(12) ECC (encrypt only)
(14) Existing key on the card
These are my only options. (Translated from german). There is no option to choose own capabilities.
Version:
gpg (GnuPG) 2.4.3
libgcrypt 1.10.2
Sorry I forgot about the fact that this is actually hidden behind an additional “–expert” setting.
gpg --expert --edit-key berta.boss@demo.gnupg.com
gpg> addkey
Please select what kind of key you want:
(3) DSA (sign only)
(4) RSA (sign only)
(5) Elgamal (encrypt only)
(6) RSA (encrypt only)
(7) DSA (set your own capabilities)
(8) RSA (set your own capabilities)
(10) ECC (sign only)
(11) ECC (set your own capabilities)
(12) ECC (encrypt only)
(13) Existing key
(14) Existing key from card
Your selection?
I tried the expert option before but it said it wasnt recognized.
The problem was the order. I always put the expert at the end and it didnt work. Now I used it like you did and it works.
Thank you very much