From f038b53dfaf68be0d52d1d8aa3d2df922aabd787 Mon Sep 17 00:00:00 2001 From: Robin Krahl Date: Wed, 16 Jan 2019 01:03:30 +0000 Subject: Add the reset command to perform a factory reset After performing the factory reset, we also build the AES key so that the device is fully usable. Due to timing issue, we have to add a delay between the factory reset and building the AES key. --- nitrocli/doc/nitrocli.1 | 12 +++++++++++- nitrocli/doc/nitrocli.1.pdf | Bin 17334 -> 17751 bytes 2 files changed, 11 insertions(+), 1 deletion(-) (limited to 'nitrocli/doc') diff --git a/nitrocli/doc/nitrocli.1 b/nitrocli/doc/nitrocli.1 index 74fd635..66d73f9 100644 --- a/nitrocli/doc/nitrocli.1 +++ b/nitrocli/doc/nitrocli.1 @@ -41,6 +41,16 @@ Lock the Nitrokey. This command locks the password safe (see the Password safe section). On the Nitrokey Storage, it will also close any active encrypted or hidden volumes (see the Storage section). +.TP +.B nitrocli reset +Perform a factory reset on the Nitrokey. +This command performs a factory reset on the OpenPGP smart card, clears the +flash storage and builds a new AES key. +The user PIN is reset to 123456, the admin PIN to 12345678. + +This command requires the admin PIN. +To avoid accidental calls of this command, the user has to enter the PIN even +if it has been cached. .SS Storage The Nitrokey Storage comes with a storage area. This area is comprised of an @@ -226,7 +236,7 @@ The initial retry counter is three. If the retry counter for the user PIN is zero, you can use the \fBpin unblock\fR command to unblock and reset the user PIN. If the retry counter for the admin PIN is zero, you have to perform a factory -reset using \fBgpg\fR(1). +reset using the \fBreset\fR command or \fBgpg\fR(1). Use the \fBstatus\fR command to check the retry counters. .TP .B nitrocli pin clear diff --git a/nitrocli/doc/nitrocli.1.pdf b/nitrocli/doc/nitrocli.1.pdf index 32cf085..ff72f94 100644 Binary files a/nitrocli/doc/nitrocli.1.pdf and b/nitrocli/doc/nitrocli.1.pdf differ -- cgit v1.2.1