dist/man/pamu2fcfg.1.txt

PAMU2FCFG(1)
============
:doctype:      manpage
:man source:   pamu2fcfg
:man manual:   PAM U2F Configuration Tool

== NAME
pamu2fcfg - Configuration tool for the U2F PAM module.

== SYNOPSIS
*pamu2fcfg* [_OPTION_]...

== DESCRIPTION
Perform a FIDO2/U2F registration procedure using a connected authenticator and
output a configuration line that can be used with the U2F PAM module.

== OPTIONS
*-d*, *--debug*::
Print debug information (highly verbose)

*-h*, *--help*::
Print help and exit

*-o*, *--origin*=_STRING_::
Set the FIDO2 relying party ID to use during registration. Defaults to
pam://hostname. Before pamu2fcfg v1.1.0, this set the U2F origin URL.

*-i*, *--appid*=_STRING_::
Set the FIDO2 relying party name to use during registration. Defaults
to *origin*. Before pamu2fcfg v1.1.0, this set the U2F application ID.

*-r*, *--resident*::
Generate a resident credential. Defaults to off.

*-t*, *--type*=_STRING_::
COSE type to use during registration (ES256, EDDSA, or RS256). Defaults to ES256.

*-P*, *--no-user-presence*::
Allow using the credential without ensuring the user's presence.
Defaults to off.

*-N*, *--pin-verification*::
Require PIN verification during authentication. Defaults to off.

*-V*, *--user-verification*::
Require user verification during authentication. Defaults to off.

*--version*:
*Print version and exit*

*-u*, *--username*=_STRING_::
The name of the user registering the device. Defaults to the current user name.

*-n*, *--nouser*::
Print only registration information (key handle, public key, and options).
Useful for appending.

== BUGS
Report pamu2fcfg bugs in the issue tracker: https://github.com/Yubico/pam-u2f/issues

== SEE ALSO
*pam_u2f*(8), *pam*(7), *fido2-token*(1)

The pam-u2f home page: https://developers.yubico.com/pam-u2f/

YubiKeys can be obtained from Yubico: https://www.yubico.com/