Git and Azure DevOPS: agent refused operation

verboeseverboese
Community Member
edited May 3 in SSH

I struggle getting my GIT repositories in Azure working with 1Password keeping my SSH keys. Beside that Azure does not support Ed25519 keys (sigh), so I had to create a RSA key for it, authentication with it fails as soon as I activate the two lines for "Host *" and "IdentityAgent" pointing to the 1Password socket:
--- 8< ---
sign_and_send_pubkey: signing failed for RSA "/Users/myuser/.ssh/id_rsa_azure.pub" from agent: agent refused operation
--- 8< ---
(it also fails without setting IdentityFile and IdentitiesOnly btw.)

Exporting the key and using old fashioned file based key authentication works though.

Working with other GIT servers works, so I think this is a "Azure-Thing".


1Password Version: 8.7.0 (80700012)
Extension Version: Not Provided
OS Version: 12.2.1 (21D62)

Comments

  • floris_1Pfloris_1P

    Team Member

    Yes, this is because Azure DevOps only supports legacy ssh-rsa SHA-1 signatures. We're working on adding support for those as well.

  • billwubillwu
    Community Member

    Hi,

    I think i've created a ssh-rsa key for azure devops now, however i'm getting the same error. Is this issue fixed yet?

  • verboeseverboese
    Community Member

    AFAIK there is no support for Azure DevOPS (or the other way around: Azure DevOPS doesn't support the better algorithms) yet. My workaround: I added the following to my .ssh/config file:

    Host ssh.dev.azure.com
    IdentityFile ~/.ssh/id_rsa
    IdentitiesOnly yes
    IdentityAgent /private/tmp/com.apple.launchd.znyst9AFDG/Listeners

Leave a Comment

BoldItalicStrikethroughOrdered listUnordered list
Image
Align leftAlign centerAlign rightToggle HTML viewToggle full pageToggle lights
Drop image/file