1Password changed my private key upon import

amaridev Thanks for the feedback! Encryption support for the PKCS#8 exports is on our list. Regarding the public key PEM exports: do you need this for an SSH use case? Or are you using the SSH Key item for non-SSH things as well?

floris_1P Thank you so much. It's finally "almost" usable again.

One complaint though. In most cases, you want to export the private key encrypted. Unfortunately, you give this option only for OpenSSH Format, not for PKCS#8. I need to export password encrypted PKCS#8 keys.

PS: For consistency, provide this option also for the public key (openssh format and pem) please.

@johnpitchko @mrgrain @truist cburkin @tannerwj @smythg @foeajames @skpeml @jamesdh @jshafe @mowen Former Member @danfake

Hey everyone, thanks all for chiming in. We've made some changes to the private key export functionality: You now have control over the format your private key will be exported in. We support the OpenSSH format, PKCS#8, and PKCS#1 (if you originally imported the key in PKCS#1 format). This is available in the latest beta release and will be present in the next stable release as well.

We'd love to hear if this resolves the incompatibility issues you ran into. Apologies for the inconvenience this has caused.

Hello,
Need to use a specific format :

op read "op://Private/ssh keys/ssh key/private key?ssh-format=openssh"


ref: https://developer.1password.com/docs/cli/ssh-keys/

Upvote for this feature! I need my RSA key retrievable in the original format.

+1 for me as well

+1. Please fix this.

My hacky workaround was to store an RSA key in a Document item type and attach my pem file but then I can't use SSH features.

Another +1 - this behind the scenes conversion behavior essentially makes key storage unusable. Our company just signed on with 1Password this year and this problem is both surprising and disappointing. This item should be at the very top of the priority list

I feel like I have to be doing something wrong as this is the most basic of use cases, literally just trying to read a key I've just uploaded. It's an RSA 4096 key w/ public exponent of 65537. It's listed in the UI w/ a "key type" value of "RSA, 4096-bit", but the actual key saved is something else and once uploaded, cannot be re-exported. I'm struggling to understand how you can https://developer.1password.com/docs/ssh/manage-keys/#supported-ssh-key-types. It's mind blowing and honestly kind of scary that this issue has been outstanding for over a year.

This is insane. I uploaded numerous RSA private keys and then went to another system and attempted to read them, only to get the error unsupported key type "RSA PRIVATE KEY" passed with the PEM. Completely confused, I opened the 1P UI and took a look and sure enough, they key is different?! Thankfully I had not yet deleted the keys on my original machine. This is NOT OK.