10 Feb
2021
10 Feb
'21
3:20 p.m.
Tony Breeds wrote:
One annoying gotcha I hit after adding the new key to my agent was that many places now failed to auth as it tried each key in my agent and exceeded the MaxAuthTries in sshd
The IdentitiesOnly option to ssh is useful for that. From ssh_config(1):
Specifies that ssh(1) should only use the configured authentication identity and certificate files (either the default files, or those explicitly configured in the ssh_config files or passed on the ssh(1) command-line), even if ssh-agent(1) or a PKCS11Provider or SecurityKeyProvider offers more identities. The argument to this keyword must be yes or no (the default). This option is intended for situations where ssh-agent offers many different identities.
--
Todd