NÁZOV
ssh-add – pridá RSA alebo DSA identity do agenta na overenie totožnosti
SYNTAX
ssh-add [-cDdLlXx] [-t life] [file ...]
ssh-add -s pkcs11
ssh-add -e pkcs11POPIS
ssh-add pridá RSA alebo DSA identity do agenta na overenie totožnosti
ssh-agent(1). Keď je program spustený bez parametrov, pridá súbory
~/.ssh/id_rsa, ~/.ssh/id_dsa and ~/.ssh/identity. Po načítaní súkromného
kľúča sa ssh-add pokúsi načítať informácie o certifikáte zo súboru
s rovnakým menom, ako má súkromný kľúč, ku ktorému pridá koncovku
-cert.pub. Alternatívne názvy súborov môžu byť zadané ako parameter
do príkazového riadka.
Ak niektorý súbor vyžaduje zadanie vstupnej frázy, príkaz ssh-add si
vyžiada vstupnú frázu od používateľa. Vstupná fráza sa načíta
z používateľovej tty konzoly. Program ssh-add sa pokúsi použiť poslednú
vstupnú frázu ak má spracovať viacero identít.
Aby program ssh-add správne pracoval, musí byť spustený agent na overenie
totožnosti a premenná prostredia SSH_AUTH_SOCK musí obsahovať názov
soketu.
Voľby príkazu sú nasledovné::
-c Indicates that added identities should be subject to confirmation
before being used for authentication. Confirmation is performed
by the SSH_ASKPASS program mentioned below. Successful
confirmation is signaled by a zero exit status from the
SSH_ASKPASS program, rather than text entered into the requester.
-D Deletes all identities from the agent.
-d Instead of adding identities, removes identities from the agent.
If ssh-add has been run without arguments, the keys for the
default identities will be removed. Otherwise, the argument list
will be interpreted as a list of paths to public key files and
matching keys will be removed from the agent. If no public key
is found at a given path, ssh-add will append .pub and retry.
-e pkcs11
Remove keys provided by the PKCS#11 shared library pkcs11.
-L Lists public key parameters of all identities currently
represented by the agent.
-l Lists fingerprints of all identities currently represented by the
agent.
-s pkcs11
Add keys provided by the PKCS#11 shared library pkcs11.
-t life
Set a maximum lifetime when adding identities to an agent. The
lifetime may be specified in seconds or in a time format
specified in sshd_config(5).
-X Unlock the agent.
-x Lock the agent with a password.
PROSTREDIE
DISPLAY and SSH_ASKPASS
If ssh-add needs a passphrase, it will read the passphrase from
the current terminal if it was run from a terminal. If ssh-add
does not have a terminal associated with it but DISPLAY and
SSH_ASKPASS are set, it will execute the program specified by
SSH_ASKPASS and open an X11 window to read the passphrase. This
is particularly useful when calling ssh-add from a .xsession or
related script. (Note that on some machines it may be necessary
to redirect the input from /dev/null to make this work.)
SSH_AUTH_SOCK
Identifies the path of a UNIX-domain socket used to communicate
with the agent.
FILES
~/.ssh/identity
Contains the protocol version 1 RSA authentication identity of
the user.
~/.ssh/id_dsa
Contains the protocol version 2 DSA authentication identity of
the user.
~/.ssh/id_rsa
Contains the protocol version 2 RSA authentication identity of
the user.
Identity files should not be readable by anyone but the user. Note that
ssh-add ignores identity files if they are accessible by others.
DIAGNOSTIKA
Exit status is 0 on success, 1 if the specified command fails, and 2 if
ssh-add is unable to contact the authentication agent.
POZRITE AJ
ssh(1), ssh-agent(1), ssh-keygen(1), sshd(8)
AUTORI
OpenSSH je odvodenina od pôvodnej slobodnej verzie ssh 1.2.12, ktorú vydal
Tatu Ylonen. Aaron Campbell, Bob Beck, Markus Friedl, Niels Provos, Theo
de Raadt a Dug Song odstránili mnoho chýb, pridali novšie funkcie a
vytvorili OpenSSH. Markus Friedl prispel podporou SSH protokolov verzií
1.5 a 2.0.
