Skip to content

Latest commit

 

History

History
185 lines (124 loc) · 5.75 KB

README.md

File metadata and controls

185 lines (124 loc) · 5.75 KB
Raw

Setup multiple SSH keys

Guide on how to setup Git to use one or multiple SSH keys

These days there are a lot of online services that offer Git hosting (GitHub, GitLab, Bitbucket, etc...) and each one requires a set of SSH keys. Below, I will show you a process to easily manage one or multiple SSH keys.

Before we begin

Attention Windows users: In this guide when referring to a Terminal, please open the Git Bash from the context menu. Also, the ~ shorthand refers to your Home directory (example: C:\Users\YOUR_USER).

Check for existing SSH keys

If you already used Git, you might have an existing SSH key.

Go to your ~/.ssh directory and check if you have a pair of files named something like id_dsa or id_rsa and a matching file with a .pub extension. The .pub file is your public key, and the other file is the corresponding private key.

If you have id_dsa keys, it's best if you delete them now and go through the next steps to generate a new SSH key. These use a very old standard.

If you have a single id_rsa pair I would suggest you do this:

Find out for what service you use them by going to an existing Git project on your computer and running this command:

$ git remote -v
origin  git@github.com:raduserbanescu/git-workshop.git (fetch)
origin  git@github.com:raduserbanescu/git-workshop.git (push)

Remember the username (example: git from above) and the hostname (example: github.com from above).

Rename the SSH keys pair to something more self explanatory like for example id_rsa_personal_github and id_rsa_personal_github.pub.

Follow along with the next steps in this guide, but skip the SSH key generation.

Setup

Go through these steps each time you need a new SSH key for a Git online service that you use.

Step 1: Generate a new SSH key

Open a Terminal and run these commands.

$ cd ~/.ssh

Use your email address.

$ ssh-keygen -t rsa -b 4096 -C "your_email@example.com"
Generating public/private rsa key pair.

Name your key, don't use the default name.

Enter file in which to save the key (~/.ssh/id_rsa): id_rsa_SOMETHING_HERE

Enter your passphrase. Optional for increased security.

Enter passphrase (empty for no passphrase):
Enter same passphrase again:

The SSH key was generated.

Your identification has been saved in ....................
Your public key has been saved in ....................
The key fingerprint is:
....................
The key's randomart image is:
....................

Step 2: Create a SSH config file

If you do not already have a ~/.ssh/config file, create an empty file now.

$ touch ~/.ssh/config

Step 3: Add the new key to the SSH config file

For each new key you generate, you need to add a new block.

Template:

# Description comment
Host example.com
	User git
	HostName example.com
	PreferredAuthentications publickey
	IdentityFile ~/.ssh/id_rsa_SOMETHING_HERE
	AddKeysToAgent yes

Example:

# Personal GitHub
Host github.com
	User git
	HostName github.com
	PreferredAuthentications publickey
	IdentityFile ~/.ssh/id_rsa_personal_github
	AddKeysToAgent yes

Step 4: Add the new SSH key to your online account

Copy the contents of the .pub file (example: id_rsa_personal_github.pub).

Simplest method: Go in the ~/.ssh directory, open the .pub file with your favorite text editor, Select All, Copy.

Add it to your online account, depending on which service you use:

Step 5: Test your SSH connection

Run this command, using your service hostname.

$ ssh -T git@github.com

If this is the first time you connect to that service, you will get a warning. The SSH client asks you if it can trust the public key of the service.

The authenticity of host '..........' can't be established.
RSA key fingerprint is ....................
Are you sure you want to continue connecting (yes/no/[fingerprint])?

Type yes to confirm. The SSH client adds the service to the list of trusted hosts inside the file ~/.ssh/known_hosts.

Warning: Permanently added '..........' (RSA) to the list of known hosts.

If you have a passphrase or you didn't enter it before, you will be prompted now. Your ssh-agent should remember it for a period of time.

Enter passphrase for key '~/.ssh/id_rsa_SOMETHING_HERE':

If everything is setup correctly, you should see a welcome message containing your username.

Hi raduserbanescu! You've successfully authenticated, but GitHub does not provide shell access.

Troubleshooting

References