SSH private key password never removed with Keychain/ssh-agent

keychain ssh password

I have an SSH private key with password, and I'm able to add it to KeyChain/ssh-agent and have the password automatically used without having to enter it. Now I'd like to add one more thing: I want keychain/ssh-agent to forget (or lock) the password after a certain time elapsed or the screen is locked.

What I'm experiencing (on Mac OS X 10.9.5), is that even if I set my "login" keychain to "lock after sleep", and I wake up the laptop from sleep, and the keychain is still locked, ssh (through ssh-agent?) is still able to retrieve the password without asking me to unlock the keychain.

Note that the password is added to the keychain 'automatically' when I run ssh the first time - I'm not typing ssh-add on the command line, thus I prefer to not use ssh-add -t TIMEOUT explicitly.

Is there anyway to make it forget/lock the password?


Solution 1:

Not sure if you have this settings.

keychain

Check the Keep login keychain unlocked to off, in keychain preferences - First Aid tab.

Related

Change in sleep behaviour on MacBook Pro and ignoring settings on Yosemite
Change file creation date to modification date using terminal
When is $(p - 1)! + 1$ a power of $p$?
Is the empty graph connected?
Primary decomposition of $I = (x^2, y^2, xy)$
Rank of the $n \times n$ matrix with ones on the main diagonal and $a$ off the main diagonal
Derivative of Fourier transform: $F[f]'=F[-ixf(x)]$
Counting measure proof
Intermediate fields of a finite field extension that is not separable
how to prove that $\ln(1+x)< x$ [duplicate]
Number of Necklaces of Beads in Two Colors
Prove that $\sin(\sqrt x)$ not periodic