NixOS Yubikey LUKS Setup

Tools for setting up and managing a LUKS partition with Yubikey 2FA.

The current version of these tools is tailored to be run on a NixOS installation media, or on a running NixOS system; However, the actual LUKS configuration itself could be applied to any Linux distribution with a bit of tweaking.

Setup

Boot NixOS installer
Clone this repo
Run: ./scripts/ykluks-setup.sh <device>
Run: nixos-generate-config --root /mnt
Run: cp yubikey-luks.nix /mnt/etc/nixos/
Edit /mnt/etc/nixos/configuration.nix, add ./yubikey-luks.nix to imports
Edit /mnt/etc/nixos/configuration.nix to set up your NixOS system for install.
Run: nixos-install
Reboot

Add Another Yubikey

Once booted into NixOS, clone this repo and run the ykluks-addkey.sh script as root:

sudo ./scripts/ykluks-addkey.sh

Name		Name	Last commit message	Last commit date
Latest commit History 1 Commit
scripts		scripts
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

NixOS Yubikey LUKS Setup

Setup

Add Another Yubikey

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

NixOS Yubikey LUKS Setup

Setup

Add Another Yubikey

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages