Skip to content

robertherbaugh/yubikey-ssh-manager

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
application
application
 
 
backend
backend
 
 
frontend
frontend
 
 
screenshots
screenshots
 
 
.gitignore
.gitignore
 
 
LICENSE.md
LICENSE.md
 
 
README.md
README.md
 
 
app.py
app.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

YubiKey SSH Manager

A macOS application that simplifies SSH server access using your YubiKey's self-signed certificate. The application runs in your menu bar and provides a web interface for managing SSH servers and deploying your YubiKey's public key.

Screenshots

Web Interface

Web Interface The web interface allows you to manage servers, check YubiKey status, and initiate SSH connections.

Add New Server

New/Edit Server Dialog Enter server details and deploy YubiKey public key to the server.

Menu Bar

Menu Bar Quick access to your servers directly from the macOS menu bar.

Features

  • macOS menu bar application for quick access
  • Web interface for managing SSH servers
  • Automatic YubiKey public key deployment to servers
  • Secure SSH connections using YubiKey authentication
  • Server configuration management

Prerequisites

  • macOS
  • Python 3.13+
  • YubiKey with PIV capability
  • SSH access to your servers

Installation

  1. Clone the repository:
git clone https://github.com/robertherbaugh/yubikey-ssh-manager.git
cd yubikey-ssh-manager
  1. Create a virtual environment and activate it:
python -m venv .venv
source .venv/bin/activate
  1. Install the required packages:
pip install -r requirements.txt
  1. Install YubiKey PIV Client:
brew install yubico-piv-tool

Usage

  1. Start the application:
python app.py

  1. The application will appear in your menu bar with a 🔐 icon.

  2. Click the icon and select "Open Web Interface" to access the web interface.

  3. In the web interface, you can:

    • Check YubiKey status
    • Add new servers
    • View and manage existing servers
    • Connect to servers using YubiKey authentication

Adding a New Server

  1. Click "Open Web Interface" from the menu bar icon
  2. Select your YubiKey from the YubiKey menu
  3. Fill in the server details:
    • Server Name (for identification)
    • Hostname (IP address or domain)
    • Username
    • Port (default: 22)
  4. Click "Add Server"

The application will automatically deploy your YubiKey's public key to the server when you first connect.

Security

  • All server credentials are stored locally in ~/.yubikey-ssh-manager/servers.json
  • The application uses your YubiKey's self-signed certificate for SSH authentication
  • No passwords are stored; password is only required for key deployment.

Troubleshooting

  1. YubiKey not detected:

    • Ensure your YubiKey is properly inserted
    • Check if the YubiKey manager can detect your device

  2. Connection issues:

    • Verify server credentials are correct
    • Ensure the server allows public key authentication
    • Check server SSH configuration

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

License

This project is licensed under the MIT License - see the LICENSE file for details.

About

A simpler way to use Yubikeys with SSH Server

robertherbaugh.me

Topics

ssh yubikey ssh-key ssh-client access-control yubikey-piv

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 3

v0.3.0 Latest
Feb 9, 2025
+ 2 releases

Packages

No packages published

Languages