I’m trying to figure out the things required to use my Yubikey to decrpyt my LUKS root filesystem. As I understand it, dom0 in 4.1.1 doesn’t have the functions require in cryptsetup. It looks like systemd in Fedora 36 added systemd-cryptenroll, which I see in the Fedora guests. Has anyone attempt…

Yubikey LUKS with Qubes?

cayce February 1, 2023, 1:02am 2

AFAIK if you are looking toward this for convenience/ease-of-use to avoid entering your pass phrase for LUKS with a single Yubi, IIRC it’s (currently) not possible.

Two-factor? OK!

Maybe this thread/reply is helpful to you: