Unable to use private keys on filesystem after upgrading to macOS Monterey

Options
XIII
XIII
Community Member
edited May 2022 in SSH

IT finally allowed me to upgrade from macOS Big Sur (11.6.4) to Monterey (12.2.1).

However, I now can no longer use private keys on the filesystem?

➜ git pull
sign_and_send_pubkey: signing failed for RSA "/Users/me/.ssh/keys/private/company" from agent: agent refused operation
me@company@company.com: Permission denied (password,publickey).
fatal: Could not read from remote repository.

Please make sure you have the correct access rights
and the repository exists.

This is my ~/.ssh/config file:

CanonicalizeHostname yes

Include config.d/*

Host *
    PreferredAuthentications publickey
    PasswordAuthentication no
    IdentitiesOnly yes
    AddKeysToAgent no

Host !*.company.com, *
   IdentityAgent "~/.ssh/.1password/agent.sock"

This is a major problem, since I need this for one RSA 2048 bits key (the key for this company!) because the 1Password SSH agent does not support it...

How can I fix this?

(This setup worked fine on macOS Big Sur)

1Password Version: 80600050 (Nightly)
Extension Version: n/a
OS Version: macOS Monterey 12.2.1

Comments

  • XIII
    XIII
    Community Member
    Options

    Forgot to post the company specific config file in the config.d folder:

    Host *.company.com
    IdentityFile ~/.ssh/company.key
    User me@company.com
    UseKeychain yes
  • XIII
    XIII
    Community Member
    Options

    Update: I noticed that ssh-add -l listed this non-supported key as well. After moving it to the Archive in the 1Password GUI, I can use the private key on the filesystem again.

  • XIII
    XIII
    Community Member
    Options

    PS: In case anyone notices an inconsistency in the paths; that was just me cleaning up the real names differently before posting here…

This discussion has been closed.