NAME

step ssh logout – removes a private key from the ssh-agent

USAGE

step ssh logout identity [–all] [–ca-url=uri] [–root=file] [–offline] [–ca-config=path]

DESCRIPTION

step ssh logout commands removes a key from the ssh-agent.

By default it only removes certificate keys signed by step-certificates, but the flag –all can be used to remove all keys with a given subject or all keys.

POSITIONAL ARGUMENTS

identity
The certificate identity or comment in the key.

OPTIONS

–all
Removes all the keys stored in the SSH agent.
–ca-url=URI
URI of the targeted Step Certificate Authority.
–root=file
The path to the PEM file used as the root certificate authority.
–offline
Creates a certificate without contacting the certificate authority. Offline mode uses the configuration, certificates, and keys created with step ca init, but can accept a different configuration file using ‘–ca-config`’ flag.
–ca-config=path
The path to the certificate authority configuration file. Defaults to $STEPPATH/config/ca.json

EXAMPLES

Remove the certificate mariano@work from the SSH agent:

$ step ssh logout mariano@work

Remove the all the keys and certificates for mariano@work from the SSH agent:

$ step ssh logout --all mariano@work

Remove the key mariano@work from the agent listening in /tmp/ssh/agent:

$ SSH_AUTH_SOCK=/tmp/ssh/agent step ssh logout mariano@work

Remove all the keys stored in the SSH agent:

$ step ssh logout --all