Jump to content

Generate an SSH Key

From Wikitech

This page contains information about generating a public SSH Key

Overview

This page contains information about generating a public SSH Key. If you are generating a key for production access, please see SRE/Production access#Generating your SSH key.

Generate an SSH key

1) Enter the following in the terminal. Use the email you wish to associate with the SSH Key, and then press enter.

ssh-keygen -t ed25519 -C "your_email@youremail.com"

2) When prompted Enter file in which to save the key, press Enter to choose the default.

3) Type a secure passphrase, and press Enter.

4) Retype the secure passphrase, and press Enter.

The terminal will display information about the files your identification and public key will be saved in:

  • ~/.ssh/id_ed25519 - private key (as the name suggests, keep this private!)
  • ~/.ssh/id_ed25519.pub - public key

A fingerprint and randomart image for the key will be generated.

Add or Change a passphrase

Add or change the SSH passphrase using this command:

1) Enter the following into your terminal $ ssh-keygen -p, and press Enter.

2) When prompted Enter file in which the key is (/Users/you/.ssh/id_rsa):, type the location of your key and press Enter.

3) Enter your old passphrase, and press Enter.

4) Enter the same passphrase again, and press Enter.

5) our identification has been saved with the new passphrase.

Notes

  • Make sure to choose a passphrase. Do not leave it empty.
  • ssh-agent can be used to store your passphrase securely, so you do not have to re-enter it.
  • Mac OS X Leopard or later and Linux users SSH can save their passphrase in the system's keychain.