ForwardAgent not working if the remote host has 1password IdentityAgent running

cblavier
cblavier
Community Member

Hey there,

I'm connecting from my Mac computer (with 1password ssh-agent running) to another mac (also with 1password ssh-agent running).

I already set ForwardAgent yes and I can see with ssh-add -l that all my keys are properly forwarded. But I can't use any of these keys until I temporarily disable the 1password IdentityAgent from my remote ~/.ssh/config

Any idea?


1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Browser: Not Provided

Comments

  • cblavier
    cblavier
    Community Member

    any idea, 1password team?

  • Michael Mercurio
    Michael Mercurio
    Community Member

    What is the value of SSH_AUTH_SOCK environment variable after you ssh into the remote Mac? It should be separate from the socket used by 1Password when logged in locally via the desktop. i.e. on the remote host via ssh, it should NOT be something like ~/Library/Group Containers/2BUA8C4S2C.com.1password/t/agent.sock. Typically it should be something under /tmp and unique for each ssh session.

    I think I used to have this issue too, until I customized my environment pretty heavily to ensure 1Password SSH Agent and CLI works reliably over SSH and tmux sessions.