gpg --export-ssh-key YOUR_KEYID > ~/.ssh/id_rsa_gpg.pub Add to ~/.ssh/config :
sudo pacman -S gnupg pcsc-tools Plug in your dongle and check if the system sees it: gpg dongle setup
gpg --edit-key YOUR_KEYID gpg> keytocard Select destination slot (1=Sign, 2=Encrypt, 3=Authenticate). Repeat for each subkey. Extract the authentication key for SSH: gpg --export-ssh-key YOUR_KEYID > ~/
Host * IdentityFile ~/.ssh/id_rsa_gpg.pub IdentitiesOnly yes Enable SSH agent forwarding in ~/.gnupg/gpg-agent.conf : gpg --export-ssh-key YOUR_KEYID >
brew install gnupg ykman pinentry-mac :
sudo systemctl restart pcscd Edit ~/.gnupg/scdaemon.conf :