Hello, Daniel Cerqueira wrote: > I want to know a bit, on how authentication and authorization works in > GnuPG.
Do you mean authentication subkey in GnuPG? It's basically user-defined; It's up to user how it is used. Usually, it means use with OpenSSH. For example, I have an authentication subkey as my OpenPGP key. I use it with GnuPG, when I accesss git repo with OpenSSH. SSH authentication is done by OpenSSH and ssh-agent emulation of gpg-agent. It means that the key is under control of GnuPG, actually. (Other possible use case is use with Scute for X.509 client certificate authentication, together with Web browser. This is not that common/popular, though.) FYI, I wrote this ten years ago: Using GPG's authentication key for SSH access: https://www.gniibe.org/memo/software/ssh/using-gpgkey-for-ssh.html Hope this helps, --
signature.asc
Description: PGP signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org https://lists.gnupg.org/mailman/listinfo/gnupg-users