SSH-agent: allow specifying/limiting private key offers

aswang · January 13, 2026, 9:37pm

This is what Bitwarden needs to do.

In the meantime, I’m just increasing MaxAuthTries to 20:

MaxAuthTries 20

xenion1987 · January 23, 2026, 12:59pm

I would like to see a toggle for adding keys to the agent, or not.

I like to add all my SSH keys to Bitwarden, but I do not use all of them very often. A lot of my SSH keys are used for services, so they do not need to be added to the SSH agent generally.

matt45687 · February 4, 2026, 8:15pm

Thanks to @borsarinicola, @schuhu, @Schale01 for the bash script work and @tslivede for the pwsh equivalent.

Seconded.

I only recently figured out how and started using the Bitwarden ssh-agent myself. As I am apt to do–I immediately went FULL overboard and started creating a unique ssh key for every host I have access to. With the keys being stored in an encrypted vault that syncs across (client) devices–it seemed to make sense to treat these keys more like creating a unique password for every service you use. My main machine has the relevant .ssh/config host entries with corresponding IdentiyFile bw-{host}.pub records. Each host has the relevant entry in authorized_keys for its dedicated Bitwarden stored credential and a hardware security key alternate.

Does my hobby homelab need this level of security? Absolutely not!

The main drawback to this approach that gives me pause is the need to have those bw-{host}.pub keys on any device that I connect from.

It would be great if Bitwarden and the ssh-agent could in some way:

NOT divulge the names of every single SSH key saved in my vault, to every host which I initiate a connection to.
Accomplish #1, without the need to also expose those public keys (with identifying names) to even the host from which I am connecting.

Of course, I could just use a single “master” SSH key for all my various projects but given that authorizing 1 of (256) SSH keys with Bitwarden’s ssh-agent works the same as authorizing 1 of 1, I’d prefer the more secure approach.

cordis · February 13, 2026, 9:14am

I made a proof of concept implementation of a “use with ssh agent” toggle box. Feel free to try it out

github.com/bitwarden/clients

[PM-32204] Add per-SSH-key "Use with SSH agent" toggle (#18967)

main ← discapes:feature/ssh-agent-per-key-toggle

opened 09:13AM - 13 Feb 26 UTC

discapes

+180 -5

## 🎟️ Tracking https://community.bitwarden.com/t/ssh-agent-allow-specifying-l…imiting-private-key-offers/79954/24 ## 📔 Objective I, like many others, have over 5 ssh keys. This happens when following best practices like rotating ssh keys and using different keys for different targets. However, using them with Bitwarden's ssh agent causes big inconveniences when the key I need to use happens to not be in the first 5. This PR fixes that issue by allowing the user to toggle whether each key is used with the ssh agent, allowing the user to disable rarely used keys and enable often used keys. The default is to use the key with the ssh agent, so users are not inconvenienced by this change. Note that the code changes here, while being pretty minimal and straightforward, were mostly written by a language model. I'm not rapid firing AI slop merge requests across open source repositories, I made this feature specifically for my own convenience, but I would be happy if I see it benefit others. Even though most of the changes are very small, feel free to close this if it seems low quality or doesn't align with your policies. Regardless, I would appreciate it if this feature were implemented one way or another, and this will at least serve as a proof-of-concept that it can be done without major architectural changes. This is a client-side change, and it should affect the desktop application only, which I have tested to work. I have not tested the mobile applications or other platforms (though i have asked the language model to critically review changes in cross-platform code for any possibility of things breaking). State is stored locally. If anyone who is familiar with Bitwarden's build instructions wants to test this fork, it can be built with ```sh npm ci && npx nx build desktop && cd apps/desktop && npm run pack:dir ``` ## 📸 Screenshots <img width="604" height="598" alt="image" src="https://github.com/user-attachments/assets/f7be1ddb-5cde-429e-8446-88f318e59d40" /> <img width="568" height="598" alt="image" src="https://github.com/user-attachments/assets/73d8e1f0-d695-449f-9684-d45caa58c19d" /> <img width="516" height="610" alt="image" src="https://github.com/user-attachments/assets/788cd21c-e6e2-4844-aebf-8df81df47465" /> <img width="506" height="590" alt="image" src="https://github.com/user-attachments/assets/d79cb319-0f39-4efd-916e-df9dbb133b6a" /> <img width="1830" height="394" alt="image" src="https://github.com/user-attachments/assets/67de25e1-cf0d-4634-843a-04eec836e081" />

Vexcited · February 17, 2026, 4:07pm

I wrote a CLI to automatically configure SSH public keys in .ssh/config (IdentityFile and IdentitiesOnly) based on Bitwarden’s custom fields and Bitwarden CLI.

It kinda works around this issue without doing the whole SSH configuration by yourself.

It may be a temporary solution but at least it works for now…

jerem2772 · February 23, 2026, 9:13pm

I’d like to add the perspective of MobaXterm (MoTTY) users on Windows. MoTTY is based on PuTTY, and unlike OpenSSH it does not support ~/.ssh/config or options like IdentitiesOnly. It automatically tries all keys exposed by the agent.

It’s worth noting that MobaXterm’s local terminal can use the native OpenSSH client (and therefore respects ~/.ssh/config), but saved SSH sessions (“bookmarks”) rely on MoTTY. In those cases, there is no built-in way to restrict which keys are offered by the agent.

With the Bitwarden SSH agent, this means every key in the vault is exposed, which can quickly lead to “Too many authentication failures” on servers that limit authentication attempts.

In this context, having the ability to control which keys are exposed by the agent (per key or per host) would significantly improve the experience for Windows/MobaXterm users.

matt45687 · February 24, 2026, 12:33am

How it gets implemented technically is beyond me but it makes a LOT of sense to me for Bitwarden to have some way to restrict which keys are presented to which hosts, in a way very similar to the domain matching for password auto-fill. Glad to see work being done on this, officially and via the community.

jerem2772 · February 24, 2026, 12:56am

The main limitation is that SSH agents don’t receive any domain or hostname information when they are queried. The client simply asks the agent for all available identities (REQUEST_IDENTITIES), and the agent returns every loaded key. There is no context about which host is being contacted, so domain-style matching (like password autofill) isn’t technically possible at the agent level.

Because of that, the practical solution would be to let users control which keys are loaded/exposed in the agent in the first place, rather than trying to match keys dynamically to a host.

TheBestPessimist · February 24, 2026, 1:52pm

are you saying ssh is a stupid protocol? /s

matt45687 · March 2, 2026, 6:05pm

That would be a definite improvement. If this setting could be set and specific to the particular Bitwarden Desktop client install and not just to the individual vault items, that would solve it. I know there are some settings which sync to the account and remain the same across instances but there are many that only scope to the particular extension or desktop client install.

Work PC gets access to SSH keys for work related hosts. Personal Mac laptop gets my Homelab SSH keys. I realize there’s a balance to strike between keeping this feature simple and easy to use versus Microsoft 365 levels of configuration purgatory…