SSH Agent

Commander can run an SSH Agent service for establishing remote connections.

For a full remote connection management tool that supports privileged sessions, session recording and other advanced capabilities over zero-trust cloud connections, we recommend using our KeeperPAM platform.

This SSH Agent described in Commander uses direct line-of-sight SSH connections. The KeeperPAM platform includes an SSH Agent within the Keeper Desktop application.

SSH Agent

The ssh-agent command is used to load up all of the SSH keys in the vault and start an SSH Agent service. SSH connections can be seamlessly established directly using the Keeper Commander SSH Agent without having to store keys on the local filesystem. SSH connections can then be established using any standard terminal.

The SSH agent service scans all records in the Keeper Vault based on different criteria such as:

  • A record type "SSH Key" or "Server" with a private key and optional password/passphrase

  • Any record with a single SSH key file attachment

ssh-agent command

Command: ssh-agent

Detail: Starts a local SSH Agent process on the local computer using keys from the vault.

Options:

  • start: Starts the SSH Agent service and loads up all keys

  • stop: Stops the SSH Agent service

  • info: Displays SSH Agent status

  • log: Displays connection log history

Examples

Starting the SSH Agent Service from the Commander CLI

ssh-agent start

Directly starting the SSH Agent without the shell:

keeper ssh-agent start

To use the SSH Agent from your favorite terminal or connection tool, the environmental variable SSH_AUTH_SOCK must be set in the terminal or in your startup file. For example.... export SSH_AUTH_SOCK=~/.keeper/me@demo.com.ssh_agent Then, simply SSH from your terminal: $ ssh <host>

Stopping the SSH Agent service

ssh-agent stop

Last updated