How can I check lifetime of SSH keys loaded to agent?
5,959
Solution 1
As you can see in the ssh-agent protocol specification, there is no field that would expose the timeout to the client.
If you want to use expiry time, but do not want to care about adding them, there is option AddKeysToAgent, which will allow to add the keys to the agent when it is used for the first time.
Solution 2
There seems to be no way of listing the lifetime of loaded keys. See https://unix.stackexchange.com/questions/248452/detecting-the-remaining-lifetime-of-an-ssh-agent-identity
Related videos on Youtube
15 : 46
Linux/Mac Tutorial: SSH Key-Based Authentication - How to SSH Without a Password
02 : 45
Generating a new SSH Key and Adding it to the SSH-Agent
13 : 59
Linux cmd Line: Passing Keys using ssh-agent
21 : 29
How to use Multiple SSH Keys | Managing Different SSH Keys on your System
01 : 25
DevOps & SysAdmins: How can I check lifetime of SSH keys loaded to agent? (2 Solutions!!)
Author by
Huash7ee
Updated on September 18, 2022Comments
-
Huash7ee almost 2 years
I'm using OpenSSH on Linux. For securioty reasons, when I load keys to agent, I use -t option, to limit time of availability of the keys (generally for 10 hours or so).
Is there any way to list all loaded keys with their "expiry" time?