How To Add Multiple SSH Keys Ubuntu Mint Linux Debian Redhat

By default if you create a private key for SSH, it will create something like .ssh/id_rsa

Linux will always search for and offer this key when connecting to servers. 

If you put extra keys in your .ssh directory like id_rsa_realtechtalk.com, they will be ignored by default and NOT used or offered (you can verify this with ssh -v) and see it is not being offered.

Here is how you add the extra SSH keys so they are all offered:

#this gives us the PID of the SSH agent otherwise our shell won't know how to communicate with the agent which would cuase ssh-add to fail (this is usually only the case if you have a remote ssh session and are not physically on the actual host).

eval `ssh-agent -s`

The actual output of the above starts the ssh-agent and exports the SSH_AUTH_SOCK and SSH_AGENT_PID variables.

SSH_AUTH_SOCK=/tmp/ssh-adfasdf3Bq/agent.312027; export SSH_AUTH_SOCK;
SSH_AGENT_PID=35028; export SSH_AGENT_PID;

#this adds our file id_rsa_realtechtalk.com (you should adjust to the actual path and name of your SSH key file that you wish to be offered when connecting to remote hosts)

ssh-add id_rsa_realtechtalk.com

After this you should be able to be able to connect via SSH/SCP using your newly added key and all keys should be offered.

How can you see which SSH keys are available and added?

ssh-add -l

root@e2ac5b0ec2d0:/# ssh-add -l  
The agent has no identities.

If you added your keys you should see something like this:

ssh-add -l
2048 SHA256:pj53UXwoF490CDaKqlrA9MYwpVYL3+ynzrV1Sk/aNyM root@e2ac5b0ec2d0 (RSA)

Error when running ssh-add -l

Could not open a connection to your authentication agent.
 

You need to run ssh-agent like this: eval `ssh-agent -s`

Again this happens when you are on a remote host and requires you to run ssh-agent like above.

ssh-agent does not work over remote ssh session

If you normally work from the GUI (eg. Mate Desktop, Gnome, KDE) your SSH_AUTH_SOCK are probably something like /run/user/5200/keyring/ssh

The SSH_AGENT_PID would be the PID of the correct agent.

This happens because the environment variable SSH_AUTH_SOCK and SSH_AGENT_PID is not set by default when you login remotely by ssh.

How do we fix it? Normally this will be enough to fix it (even without the SSH_AGENT_PID):

export SSH_AUTH_SOCK="/run/user/5200/keyring/ssh"

Change the 5200 to the UID of your user that normally authenticates with the keys that you want.

You could make the above automatic by adding the export command to ~/.bashrc
 


Tags:

multiple, ssh, ubuntu, mint, linux, debian, redhat, default, id_rsa, connecting, servers, directory, id_rsa_realtechtalk, ignored, verify, pid, shell, communicate, cuase, eval, adds, adjust, hosts, newly,

Latest Articles

  • FreePBX 17 How To Add a Trunk
  • Docker Container Onboot Policy - How to make sure a container is always running
  • FreePBX 17 How To Add Phones / Extensions and Register
  • Warning: The driver descriptor says the physical block size is 2048 bytes, but Linux says it is 512 bytes. solution
  • Cisco How To Use a Third Party SIP Phone (eg. Avaya, 3CX)
  • Cisco Unified Communication Manager (CUCM) - How To Add Phones
  • pptp / pptpd not working in DD-WRT iptables / router
  • systemd-journald high memory usage solution
  • How to Install FreePBX 17 in Linux Debian Ubuntu Mint Guide
  • How To Install Cisco's CUCM (Cisco Unified Communication Manager) 12 Guide
  • Linux Ubuntu Redhat How To Extract Images from PDF
  • Linux and Windows Dual Boot Issue NIC Won't work After Booting Windows
  • Cisco CME How To Enable ACD hunt groups
  • How to install gns3 on Linux Ubuntu Mint
  • How to convert audio for Asterisk .wav format
  • Using Cisco CME Router with Asterisk as a dial-peer
  • Cisco CME How To Configure SIP Trunk VOIP
  • Virtualbox host Only Network Error Failed to save host network interface parameter - Cannot change gateway IP of host only network
  • Cisco CME and C7200 Router Testing and Learning Environment on Ubuntu 20+ Setup Tutorial Guide
  • Abusive IP ranges blacklist