Hello, Daniel Cerqueira wrote: > I want to know a bit, on how authentication and authorization works in > GnuPG.
Do you mean authentication subkey in GnuPG? It's basically
user-defined; It's up to user how it is used.
Usually, it means use with OpenSSH. For example, I have an
authentication subkey as my OpenPGP key. I use it with GnuPG, when I
accesss git repo with OpenSSH. SSH authentication is done by OpenSSH
and ssh-agent emulation of gpg-agent. It means that the key is under
control of GnuPG, actually.
(Other possible use case is use with Scute for X.509 client certificate
authentication, together with Web browser. This is not that
common/popular, though.)
FYI, I wrote this ten years ago:
Using GPG's authentication key for SSH access:
https://www.gniibe.org/memo/software/ssh/using-gpgkey-for-ssh.html
Hope this helps,
--
signature.asc
Description: PGP signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org https://lists.gnupg.org/mailman/listinfo/gnupg-users
