Can I use CLI 2.0 on external machines (like Raspberry Pi)?

Hey @XIII ,

op will run on Raspberry Pi! You can install them over ssh with the curl and mv commands. If you need an example, we have a 1 liner script at the bottom of the linux .zip section in the installation docs!

Hey @MatthewPackwoodJR,

Yes the arm build should work but please do not hesitate to let us know here if you run into any issues.

You can still sign in using a terminal "the old way" by entering your sign-in address and credentials, check out this guide on how to use op account add and op signin --account ACCOUNT.

Hope this fits your use case, but if not, let us know. Connect (Secrets Automation) may just be the way to go in that case.

Hey @XIII ,

Just following up with the answers to your original questions about Connect:

Should the 1password-credentials.json file be permanently saved on my Pi, because it is used in the YAML template?

1password-credentials.json with the standard docker-compose file, should always be there, because it is mounted as a volume. Alternatively, you could copy the file in the containers, instead of mounting it as a volume, and then you'd only need it when starting up Connect.

Is this safe?

I think this doc about Connect security can answer this one.

I'm confused about the pricing: does 1 token for 1 vault count as 1 of the 3 free credits? (I subscribe to 1Password for Families)

The credits represent the number of vaults that are accessed with Secrets Automation.
Here are a couple of examples:

• 3 access tokens that access 1 vault -> 1 credit
• 3 access tokens, 1 for vault A, 2 for vault B -> 2 credits
• 3 access tokens for 3 different vaults -> 3 credits
• 1 access token that can access 3 vaults -> 3 credits
• 2 access tokens, 1 can access vaults A and B, 1 only vault B -> 2 credits
• 2 access tokens, 1 can access vaults A and B, 1 vaults B and C -> 3 credits

What's the best practice for storing the Automation Access Token on the Pi?

I personally always store them as environment variables, only within the session where I make Connect requests (i.e. I never put it in my profile, to have it exported globally). However, I don't think we have ever given exact guidelines towards good practices here, and I've always only used Connect for testing purposes, so ymmv.

Hey @XIII

My initial statement about Connect credits was incorrect, and I just wanted to make a correction.

I'm confused about the pricing: does 1 token for 1 vault count as 1 of the 3 free credits? (I subscribe to 1Password for Families)

This is based on the total number of vaults that all active tokens have access to.

This means that multiple tokens that access the same vault add up, which in my previous statement was not the case.
So here's my correction of the examples I provided:

• 3 access tokens that access 1 vault -> 1 credit 3 credits
• 3 access tokens, 1 for vault A, 2 for vault B -> 2 credits 3 credits
• 3 access tokens for 3 different vaults -> 3 credits
• 1 access token that can access 3 vaults -> 3 credits
• 2 access tokens, 1 can access vaults A and B, 1 only vault B -> 2 credits 3 credits
• 2 access tokens, 1 can access vaults A and B, 1 vaults B and C -> 3 credits 4 credits

Glad this got sorted out! Is there anything else we can help with here, XIII?

I think we're (almost) all caught up, haha! Please do let us know if you require our attention on any particular topic out of those that you have opened.

Best,
Horia