Manual Pages for UNIX Darwin command on man ssh-add

SSH-ADD(1) BSD General Commands Manual SSH-ADD(1)

NAME

sssshh-aadddd - adds RSA or DSA identities to the authentication agent

SYNOPSIS

sssshh-aadddd [-ccDDddLLllXXxxKKkk] [-tt life] [file ...]

sssshh-aadddd -ss reader

sssshh-aadddd -ee reader

DESCRIPTION

sssshh-aadddd adds RSA or DSA identities to the authentication agent,

ssh-agent(1). When run without arguments, it adds the files

~/.ssh/idrsa, ~/.ssh/iddsa and ~/.ssh/identity. Alternative file names can be given on the command line. If any file requires a passphrase,

sssshh-aadddd asks for the passphrase from the user. The passphrase is read

from the user's tty. sssshh-aadddd retries the last passphrase if multiple

identity files are given.

The authentication agent must be running and the SSHAUTHSOCK environ-

ment variable must contain the name of its socket for sssshh-aadddd to work.

The options are as follows:

-cc Indicates that added identities should be subject to confirmation

before being used for authentication. Confirmation is performed

by the SSHASKPASS program mentioned below. Successful confirma-

tion is signaled by a zero exit status from the SSHASKPASS pro-

gram, rather than text entered into the requester.

-DD Deletes all identities from the agent.

-dd Instead of adding identities, removes identities from the agent.

If sssshh-aadddd has been run without arguments, the keys for the

default identities will be removed. Otherwise, the argument list will be interpreted as a list of paths to public key files and matching keys will be removed from the agent. If no public key

is found at a given path, sssshh-aadddd will append .pub and retry.

-ee reader

Remove key in smartcard reader.

-LL Lists public key parameters of all identities currently repre-

sented by the agent.

-ll Lists fingerprints of all identities currently represented by the

agent.

-ss reader

Add key in smartcard reader.

-tt life

Set a maximum lifetime when adding identities to an agent. The

lifetime may be specified in seconds or in a time format speci-

fied in sshdconfig(5).

-XX Unlock the agent.

-xx Lock the agent with a password.

-KK When adding identities, each passphrase will also be stored in

your keychain. When removing identities with -d, each passphrase

will be removed from your keychain.

-kk Add identities to the agent using any passphrases stored in your

keychain. ENVIRONMENT DISPLAY and SSHASKPASS

If sssshh-aadddd needs a passphrase, it will read the passphrase from

the current terminal if it was run from a terminal. If sssshh-aadddd

does not have a terminal associated with it but DISPLAY and SSHASKPASS are set, it will execute the program specified by SSHASKPASS and open an X11 window to read the passphrase. This

is particularly useful when calling sssshh-aadddd from a .xsession or

related script. (Note that on some machines it may be necessary to redirect the input from /dev/null to make this work.) SSHAUTHSOCK

Identifies the path of a unix-domain socket used to communicate

with the agent. FILES ~/.ssh/identity Contains the protocol version 1 RSA authentication identity of the user. ~/.ssh/iddsa Contains the protocol version 2 DSA authentication identity of the user. ~/.ssh/idrsa Contains the protocol version 2 RSA authentication identity of the user. Identity files should not be readable by anyone but the user. Note that

sssshh-aadddd ignores identity files if they are accessible by others.

DIAGNOSTICS Exit status is 0 on success, 1 if the specified command fails, and 2 if

sssshh-aadddd is unable to contact the authentication agent.