ykman

The YubiKey Manager can be used to configure all aspects of the YubiKey.

TLDR

Get information from YubiKey

$ ykman info
copy


Get information for a given application from YubiKey
$ ykman [fido|oath|openpgp|otp|piv] info
copy


Get a list of enabled applications over NFC from YubiKey
$ ykman config nfc --list
copy


Enable application over USB on YubiKey
$ ykman config usb --enable [OTP|U2F|FIDO2|OATH|PIV|OPENPGP|HSMAUTH]
copy

SYNOPSIS

ykman [OPTIONS] COMMAND [ARGS]...

DESCRIPTION

Configure your YubiKey via the command line.

OPTIONS

-v, --version

-d, --device SERIAL

-l, --log-level [DEBUG|INFO|WARNING|ERROR|CRITICAL]

Enable logging at given verbosity level.

--log-file FILE

Write logs to the given FILE instead of standard error; ignored unless --log-level is also set.

-r, --reader NAME

Use an external smart card reader. Conflicts with --device and list.

-h, --help

Show this message and exit.

Commands:

config

Enable/Disable applications.

fido

Manage FIDO applications.

info

Show general information.

list

List connected YubiKeys.

mode

Manage connection modes (USB Interfaces).

oath

Manage OATH Application.

openpgp

Manage OpenPGP Application.

otp

Manage OTP Application.

piv

Manage PIV Application.

EXAMPLES

List connected YubiKeys, only output serial number:

$ ykman list --serials

Show information about YubiKey with serial number 0123456:

$ ykman --device 0123456 info

Copied to clipboard