[Bug]: Trying to following the mTLS YubiKey tutorial #1492
Description
Steps to Reproduce
I am trying to follow the mTLS Yubikey tutorial and I can run the command before and have it generate a certificate for usage but when i try to use it with my acme device attestation setup i am having an issue where i know the pin is correct but it is giving the following erorr:
step ca certificate --attestation-uri 'yubikey:slot-id=9a'
--kms 'yubikey:?pin-value=****'
--provisioner acme-da **** ****.crt
✔ Provisioner: acme-da (ACME)
error signing key authorization: command "/Users/dhaanpaa/go/bin/step-kms-plugin sign --format base64 yubikey:slot-id=9a" failed with:
Error: verify pin: smart card error 6983: authentication method blocked
Your Environment
- OS - OS X 15.7.1
stepCLI Version - Smallstep CLI/0.28.7- Yubikey 5 NFC
Expected Behavior
To have a mTLS certficate ready for re importing back to a yubikey
Actual Behavior
Unable to get an attested certificate
Additional Context
No response
Contributing
Vote on this issue by adding a 👍 reaction.
To contribute a fix for this issue, leave a comment (and link to your pull request, if you've opened one already).