Skip to content

Instantly share code, notes, and snippets.

Forked from zmts/
Created October 25, 2021 17:16
Show Gist options
  • Save Jeket/062fd5d30a601b6946d41c5e6a0b9cc6 to your computer and use it in GitHub Desktop.
Save Jeket/062fd5d30a601b6946d41c5e6a0b9cc6 to your computer and use it in GitHub Desktop.
ssh cert to remote server access

SSH cert to remote server access

Generate ssh certificate with unique filename. Stroring keys in separate files will help make backup without not related keys.

➜ cd /Users/alex/.ssh
➜ ssh-keygen -t rsa -b 4096 -f myproject_test -C "myproject comment"
Generating public/private rsa key pair.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:

Your identification has been saved in myproject_test.
Your public key has been saved in
The key fingerprint is:
SHA256:Bhweh0ETJu7RB/7yKNyAoXiVEHErIL2Je5d8Gvpvii4 alex@macbook2015.local
The key's randomart image is:
+---[RSA 4096]----+
|o.+oo.X+.        |
|...+ X.*         |
| .oo* * .        |
|o.o* . +         |
|o.o.o.. S        |
|....=o.=         |
| . oo+o .        |
|E .....          |
| oo.o+.          |

Now copy public key to remote(target) server (

➜ ssh-copy-id -i /Users/alex/.ssh/ root@

Or if you have custom ssh port

➜ ssh-copy-id -i /Users/alex/.ssh/ root@ -p 7777
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: ""
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys

root@'s password:

Number of key(s) added:        1

Now try logging into the machine, with:   "ssh -root@"
and check to make sure that only the key(s) you wanted were added.

Try to login

ssh -i /Users/alex/.ssh/myproject_test root@

Or with custom ssh port

ssh -i /Users/alex/.ssh/myproject_test -p 7777 root@
Enter passphrase for key 'myproject_test':

Use one public key to multiple servers

In case when we have multiple servers in one project. We can just copy public key to this servers and use it to have access everywere.

➜ ssh-copy-id -i /Users/alex/.ssh/ root@
➜ ssh-copy-id -i /Users/alex/.ssh/ root@
➜ ssh-copy-id -i /Users/alex/.ssh/ root@


If you set passphrase to certificate probably will want to check it

ssh-keygen -y -f myproject_test


Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment