...
This guide is intended to provide bare minimum steps for using a certificate on Yubikey with ssh-agent and forwarding it via ssh to use on remote host.
Depending on the Linux distribution used, some steps may need to be modified/added/removed.
Prerequisites
- Yubikey Smartcard Setup via Windows CA-issued Certificate (Yubikey Manager) - ITS Operations - RIT Wiki
OR - Yubikey Smartcard Setup via Self-Signed Certificate (Yubikey Manager)
Certificate should be attested and pushed to intended servers via Yubikey Attestation Verification - Linux
...