ssh-agent is a single sign-on mechanism for SSH that is included in the OpenSSH software. Use this tag for questions on how to configure and use ssh-agent.
1
vote
2answers
32 views
git not using global config file or public key
I've setup a global git username and password while logged in as root on my Fedora server with the following commands:
git config --global user.email "[my email]"
git config --global user.name "[my ...
1
vote
1answer
24 views
How to automatically add keyfile and passphrase to ssh-agent?
Linux 4.4.0-34-generic #53-Ubuntu SMP Wed Jul 27 16:06:39 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux
I use the script to start ssh-agent and start other script (which is using expect to sent passphrase ...
2
votes
1answer
44 views
`ssh-agent` asks passphrase after it has been added
I'm new to the ssh-agent and encounter what I identify as a "bug".
Situation
I have a passphrase-protected private key.
I want to use the ssh-agent so I do not write the passphrase each time I ssh.
...
0
votes
2answers
20 views
Automatically login to an ssh-agent session in a non-user shell
My team shares a user account via a non-user shell on a few systems for reasons beyond our control. We all move our passphrase protected private keys to the share'd users ~/.ssh directory. We normally ...
0
votes
1answer
100 views
Prevent ssh-agent from starting in Ubuntu 16.04
I started ssh-agent using:
eval $(ssh-agent)
ssh-add /path/to/key
on one of the servers (Ubuntu 16.04) to allow for rsync, and had thought that the session for the ssh-agent will expire after ...
2
votes
5answers
68 views
Avoid separately adding ssh keys (with password) to shell sessions
Note: Adding a few lines to the .<name of shell>rc will not solve the problem here, since this particular ssh key has a password and that would not eliminate the need to keep typing it.
So I ...
4
votes
1answer
31 views
Save SSH key passphrase using keychain with --noask option
I want to use keychain to manage passphrase prompt for SSH keys, but it should 1) ask it only when I'm actually using key and 2) save it for some period of time after that. Currently I've 2 options:
...
0
votes
0answers
65 views
ssh proxycommand authentication
I found this on the ssh man page:
SSH_ASKPASS If ssh needs a passphrase, it will read the
passphrase from the current terminal if it was run
from a terminal. ...
2
votes
1answer
119 views
constant “enter passphrase for public key” by ssh
What could be the reason that ssh < host > is asking for public key password
Enter passphrase for key '/home/%d/.ssh/id_rsa.pub':
even if provided a good password?
I have no problem with ...
1
vote
1answer
87 views
ssh-agent: How to keep the login key, and add more identities?
When I log in to my local Ubuntu 14 instance from Windows (I use SecureCRT as a SSH client) using my RSA key, the key is available for forwarding for further SSH sessions (it is listed with ssh-add -l)...
2
votes
2answers
74 views
Add keys to ssh-agent
I have three SSH key pairs that I want to have added to the SSH agent every time I start a shell. After restarting I always have to manually add them again by using ssh-add <path_to_private_key>....
0
votes
1answer
79 views
Ansible: running from virtualenvwrapper with pip installation
I'm trying to test ansible with a "pip" installation of ansible in a virtualenv of python managed by virtualenvwrapper. However, I am having problems to use the ssh-agent and the SSH keys:
(ansible)$ ...
0
votes
0answers
11 views
Can I make entering my private key's password work like sudo does? [duplicate]
Is there a way to skip typing my SSH private key's password if I have used it recently, similar to when sudo caches your credentials for a limited time? I know that I can use ssh-add with the -t ...
2
votes
1answer
39 views
How to clear SSH keys from script run as root?
I want to configure my laptop to clear all my SSH keys from the authentication agent when I close the lid of my laptop.
Clearing the keys can be done by running ssh-add -D. Running a script when ...
-1
votes
1answer
30 views
find one difference…(or more) [closed]
I have two servers (debian). Almost identical. I want to use SSH AgentForwarding.
I try to login from A to B and from B to A:
On user@A: set | grep SSH
SSH_AUTH_SOCK=/tmp/ssh-uEsiAIsssn/agent.1234
...
1
vote
1answer
740 views
ssh algorithm negotiation failed
Problem
Ok, the problem is that I am using Pycharm on El Capitan. I am trying to connect to a server that has strict login Kexalgorithms using the newer Key Exchange Algorithms than Pycharm seems to ...
0
votes
1answer
274 views
Unable to establish an SSH tunnel using Redis Desktop Manager
I am trying to connect to an Elasticache Redis Server via an AWS Ubuntu instance and using an ssh tunnel. When I try to configure Redis Desktop Manager to connect via an ssh tunnel and provide ...
1
vote
1answer
25 views
xautolock/ssh-add can't interact with ssh-agent if launched from .xsessionrc
I use xautolock to lock the screen and suspend my laptop after a given amount of time of inactivity. This works fine. This is how xautolock is started from .xsessionrc:
xautolock -time 60 -...
0
votes
2answers
80 views
How can I avoid always having to use `eval 'ssh-agent -s'`
I can't figure out why everytime I ssh back into my server I always have to start my ssh agent with the command eval 'ssh-agent -s' followed by ssh-add <my_key.pem> in order to successfully ssh ...
0
votes
0answers
20 views
Trying to make a SSH Tunel [duplicate]
I configurated a bastion server on AWS on my public subnet.
I can make direct ssh to the ec2 instance inside the private subnet, using the bastion host.
I can connect to the bastion host and check ...
1
vote
1answer
84 views
Could not open a connection to your authentication agent
I am using a mac.
and I am trying to add the key to the agent.
Vinays-MacBook-Pro:XSLT vinay$ eval $(ssh-agent)
Agent pid 49170
Vinays-MacBook-Pro:XSLT vinay$ ssh-agent
SSH_AUTH_SOCK=/var/folders/...
4
votes
1answer
102 views
Detecting the remaining lifetime of an ssh-agent identity
The ssh-add command lets you specify the lifetime of an identity being added to ssh-agent. For example, if I type
ssh-add -t 1h
the identify will expire after 1 hour. I can then list the identities ...
1
vote
2answers
486 views
Why can't I authenticate to GitHub?
my_username@my_username-laptop MINGW64 ~ (master)
$ ssh-keygen -t dsa
Generating public/private dsa key pair.
Enter file in which to save the key (/c/Users/my_username/.ssh/id_dsa):Enter
Enter ...
1
vote
1answer
254 views
How to force ssh-add to ask passphrase when loading RSA key from FIFO?
I've created the following RSA key (with passphrase):
ssh-keygen -t rsa -f rsa_foo
Now when adding the key in normal way, ssh-add asks for the passphrase fine:
$ ssh-add rsa_foo
Enter passphrase ...
1
vote
1answer
74 views
SSH Agent admitted failure to sign using the keys
I have upgraded my debian from wheezy to jessie.
A ssh-agent is started when I launch my wm (awesome launch via gdm3), I can do ssh-add
The env vars about ssh are correctly set.
ps aux |grep ssh-...
0
votes
0answers
664 views
How to restart ssh server / sshd on Linux?
I am trying to restart the ssh server on my server which is running Fedora Cloud.
I have tried the method here http://www.cyberciti.biz/faq/howto-restart-ssh/ (# service sshd restart) and get Failed ...
0
votes
1answer
42 views
configuring ssh-agent
I'm using ssh-agent for caching private keys; it's working well before connecting remote PC its not asking for a PASSPHRASE but its asking remote user password.
Ex:
host$ sudo ssh-agent bash
...
5
votes
2answers
291 views
Deleted my ssh keys
I'm on a Mac (OSX).
I've accidentally deleted my ssh keys, but I haven't restarted my computer yet so I'm still able to access servers with my key. I guess the ssh-agent has some form of it in memory?...
0
votes
1answer
60 views
Error becoming root centos
I'm getting the following error when I'm trying to become root
-bash-4.1$ sudo su -
Could not open a connection to your authentication agent.
* Error: Problem adding; giving up
I have tried eval "$(...
0
votes
2answers
177 views
SSH client not trying my keys in ssh-agent
I'm on OS X Yosemite 10.10.5, and my SSH client is behaving in a way I can't explain or resolve.
My goal is simply to connect to a server with:
ssh -A [email protected]
When I add -v to this, I can ...
2
votes
2answers
119 views
Git config forwarding
I don't know if this even possible or not.
I was wondering if there is any way like SSH Agent forwarding by which we can forward our .gitconfig on the remote server, and git automatically picks the ...
1
vote
1answer
70 views
ssh-agent and timeout
I am using a script to update my system:
cd /opt/
chmod 600 /opt/updater/.ssh/.pk
ssh-agent bash -c 'ssh-add /opt/updater/.ssh/.pk; git stash; git pull origin master'
/opt/updater/bin/updater.sh
My ...
2
votes
1answer
40 views
How can I have ssh-agent warn if using a particular key?
I have an older SSH key that I'm replacing, and I would like ssh-agent to warn me if it used the older key, so I know to update it on that server.
Is there a way to do this?
1
vote
1answer
82 views
Why does git store my SSH identity in gnome, but not KDE?
I'm used to git only prompting me for my SSH passphrase the first time I need to authenticate to a server.
On the system I'm currently on, this only works in a Gnome session. If I start a KDE session,...
3
votes
3answers
383 views
ssh-add is forgotten if new gnome-terminal is opened
After a:
eval `ssh-agent -s`
ssh-add
I can log in to a "server" via ssh without pwd.
Question: But If I open a new gnome-terminal I have to do this again, why?
Using RHEL Desktop 6.6 with ...
2
votes
1answer
82 views
Identify SSH public key on remote end's shell session (no agent or no identities in agent)
I know this way to find out which key was used to authenticate when using keys stored in a key agent:
ssh-add -L 2>/dev/null | awk '{print $1}' | while read identity; do grep -v '^#' ~/.ssh/...
2
votes
1answer
157 views
Best way to connect to an existing user context through SSH
What we would like to do:
We have short living virtual machines for running scripts. The virtual machines are used through SSH to perform "builds" (sequence of scripts) and discarded once all the ...
2
votes
0answers
59 views
Run ssh-agent 24/7 using keychain?
I have a Node.js script that requires ssh-agent to be running 24/7 on my Ubuntu server. I installed keychain and put eval 'keychain --eval id_rsa into my ~/.bash_profile, but that only runs when I ssh ...
8
votes
1answer
220 views
Is there a technical reason why ssh-agent lacks a sudo-like inactivity/idle timeout feature?
There are some brief discussions about the existing ssh-agent -t feature at [1], and there was a post as far back as 2001 on debian-devel [2] wishing for an inactivity timeout feature. There's a ...
0
votes
1answer
34 views
Set MasSessions to SSH does not take effect
I got a server with enabled ssh. To prevent attacks and to fit to my needs, I just need one connection at the same time to my server. So, I tried to set MaxSessions paramater to 1 in /etc/ssh/...
2
votes
1answer
79 views
Solution for private keys on a remote machine?
I have to manage several servers, with services that can be cron, and integration jobs, deployments, backups. The common thing with all of these, is that they sometimes require access to other servers....
3
votes
0answers
390 views
How do I combine SSH agent forwarding and gpg-agent?
I have an ssh-agent running on my local machine. I connect to a remote machine via SSH, with agent forwarding enabled. On that remote there is an instance of gpg-agent running.
I know that recent ...
4
votes
1answer
6k views
“Permanently added the RSA host key” what does it mean?
I'm very new to Unix and things around it, particularly for this question is SSH and authentication.
I know that I can create identities (create a pair of public/private key), put it into ssh-agent ...
0
votes
2answers
4k views
Using lftp with ssh-agent
I have a script that logs into sftp server
eval `ssh-agent -s`
ssh-add /home/<username>/.ssh/id_rsa
sftp <username>@<target>
This works, but I would like to get only files that ...
7
votes
2answers
1k views
How to get asked for SSH key passphrase once and only when needed?
(I have read many of the questions on this site that look related and I believe this is a genuinely new question.)
I have lots of keys on lots of servers and they're all protected with passphrases.
...
2
votes
1answer
116 views
Can ssh (agent) work with two separate identities? [duplicate]
I use an Ubuntu 14.10 distribution, and two private keys, one encrypted (~/.ssh/E.key), and one not encrypted (~/.ssh/NE.key), which I use for accessing two github repositories, respectively, repoE ...
4
votes
1answer
251 views
Why is my SSH authentication socket different from the man pages?
These two entries of man ssh-agent describe the SSH authentication socket:
$TMPDIR/ssh-XXXXXXXXXX/agent.<ppid>
UNIX-domain sockets used to contain the connection to the authentication ...
4
votes
2answers
321 views
SSH password requested when in Tmux
When I connect to my remote machine I do authenticate using a rsa key (I think is rsa, don't remember).
If I do ssh from a regular shell I get logged on the machine without a password. However if I ...
1
vote
1answer
302 views
Is there a way to specify the list of private keys to add to ssh-agent?
After a few hours of digging, I finally found out why my computer stopped asking me for my key(s) using gnome ssh-askpass. It was very simple, but took me forever to figure out because... well... most ...
3
votes
2answers
130 views
monkeysphere to gnupg 2.1 workflow change
So, like many people, I was using my GPG key for SSH authentication with the help of monkeysphere, so I could load my private key to agent with monkeysphere s command and be free to connect anywhere I ...
