The SSH_AGENT utility starts the SSH authentication agent
to use an SSH client that is configured to use public-key user authentication.
Because the authentication agent holds private keys in memory, the
user does not need to enter a passphrase if one exists for the key
being used. As long as the agent is running, all key-related operations
are directed to the agent.
On startup, the agent does not hold any private keys. Keys
are added by using the SSH_ADD command. Several identities can be
stored in the agent, and the agent can use any of these identities
automatically. The command SSH_ADD -l displays the identities currently
held by the agent.
When the SSH agent starts up, it assigns the logical name
TCPIP$SSH_AGENT_PORT in the process job table, which is shared by
a process and its subprocesses. Client programs use this value to
start communication with the agent, in turn assigning the logical
name TCPIP$SSH_CLIENT_PORT. The agent uses the latter logical name
to check that the client is a valid user on the same job (that is,
in the parent of the agent subprocess).
The agent terminates when the user logs out or stops the agent.
Command
Synopsis SSH_AGENT
Examples
The following example shows a normal
agent startup and displays the value of the TCPIP$SSH_AGENT_PORT
logical name:
$ ssh_agent %DCL-S-SPAWNED, process USER01_67 spawned $ show user/full USER01 OpenVMS User Processes at 12-AUG-2003 13:49:36.29 Total number of users = 1, number of processes = 2 Username Process Name PID Terminal USER01 USER01 00000B53 RTA1: (SYS01::USER01) USER01 USER01_67 00000EB8 (subprocess of 00000B53) $ show logical TCPIP$SSH_AGENT_PORT "TCPIP$SSH_AGENT_PORT" = "49198" (LNM$JOB_81425DC0)
The following example shows an attempt to start
a second agent within the same parent process.
HP TCP/IP Services for OpenVMS Guide to SSH
SSH Command Reference
