DZone
DevOps Zone
Thanks for visiting DZone today,
Edit Profile
  • Manage Email Subscriptions
  • How to Post to DZone
  • Article Submission Guidelines
Sign Out View Profile
  • Post an Article
  • Manage My Drafts
Over 2 million developers have joined DZone.
Log In / Join
  • Refcardz
  • Trend Reports
  • Webinars
  • Zones
  • |
    • Agile
    • AI
    • Big Data
    • Cloud
    • Database
    • DevOps
    • Integration
    • IoT
    • Java
    • Microservices
    • Open Source
    • Performance
    • Security
    • Web Dev
DZone > DevOps Zone > A Quirk With SSH Keys in macOS Sierra

A Quirk With SSH Keys in macOS Sierra

Have you noticed a quirk with using SSH keys with macOS 10.12 Sierra? You're not the only one.

Rob Allen user avatar by
Rob Allen
·
Jan. 01, 17 · DevOps Zone · Opinion
Like (5)
Save
Tweet
10.20K Views

Join the DZone community and get the full member experience.

Join For Free

Now that I've upgraded to macOS 10.12 Sierra, I've noticed that SSH requires me to enter my passphrase to keys every time I use them. This was a surprise, as it's not how 10.11 El Capitan worked.

This is how to fix it.

First, add your SSH key's passphrase to the keychain using ssh-add -K ~/.ssh/id_rsa (or any other key file). You can now use your SSH key without re-typing the password all the time which is very handy for use with GitHub, GitLab, Bitbucket, etc.

You can add as many keys as you like and ssh-add -l will show you which keys are registered.

When you reboot, you'll notice that ssh-add -l is empty, which is different from how it works on macOS 10.11 as well as previous versions, which automatically re-added the keys it knew about. In Sierra, Apple has changed it so that you now need to explicitly add the known identities to the SSH agent. This is done using ssh-add -A, which you need to run every time you reboot.

To save having to do this, you can either add ssh-add -A to your ~/.bash_config file or update your SSH config by editing ~/.ssh/config and adding:

Host *   
AddKeysToAgent yes
UseKeychain yes 

SSH will now work as expected and you'll never need to reenter your passphrase once it has been added to the system keychain.

MacOS Sierra MacOS

Published at DZone with permission of Rob Allen, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.

Popular on DZone

  • Data Mesh — Graduating Your Data to Next Level
  • Secure Proxy for HIPAA-Compliant API Analytics
  • MEAN vs MERN Stack: Which One Is Better?
  • ETL/ELT on Kubernetes With Airbyte

Comments

DevOps Partner Resources

X

ABOUT US

  • About DZone
  • Send feedback
  • Careers
  • Sitemap

ADVERTISE

  • Advertise with DZone

CONTRIBUTE ON DZONE

  • Article Submission Guidelines
  • MVB Program
  • Become a Contributor
  • Visit the Writers' Zone

LEGAL

  • Terms of Service
  • Privacy Policy

CONTACT US

  • 600 Park Offices Drive
  • Suite 300
  • Durham, NC 27709
  • support@dzone.com
  • +1 (919) 678-0300

Let's be friends:

DZone.com is powered by 

AnswerHub logo