Reputation: 1
Update SSH key/RSA fingerprint for GitHub (Ubuntu-20.04) not working
My GitHub ssh key is expired. I tried to update it, which works on GitHub's site, but my laptop just shows me the old RSA fingerprint when I try to push/pull/clone. So currently, my laptop has no access to GitHub now.
There a similar questions on StackOverflow (but they are not covering my case):
- How can I force ssh to accept a new host fingerprint from the command line
- How to generate ssh keys (for github)
- git clone through ssh
When I try to push/pull, following message appears
The authenticity of host 'github.com (140.82.121.4)' can't be established.
RSA key fingerprint is SHA256:xyz/0GFYZ+xPpuxU.
Are you sure you want to continue connecting (yes/no/[fingerprint])?
Hitting yes results in having no access, because the fingerprint mentioned in the message is expired. Entering a new fingerprint seems not to work, because the message just appears again.
For sure, I tried to update the ssh key. Undertaken steps:
- deleted the old ssh key on GitHub (Settings --> SSH and GPG keys --> [Ðelete] old key)
- created a new ssh key in my terminal with
ssh-keygen -o ~/.ssh/id_rsaand~/.ssh/id_rsawere updated- got my fingerprint, let's say
SHA265:abcdefg name@name-P452USF - saved the ssh key on GitHub.
- message appears again after trying to pull/clone/push. Again the message shows the expired fingerprint
- deleted content of
~/.ssh/known_host, because the expired fingerprint is stored here. - repeated steps 1-5
- message occurs again (why/where is expired fingerprint still stored???)
Rebooting my device does not work too.
Entering the new fingerprint does not work (why?). After hitting [Enter] the message appears again.
Upvotes: 0
Views: 1623
Answers (1)
Reputation: 73
deleted content of
~/.ssh/known_host, because the expired fingerprint is stored here.
This should usually work (though on my computer the filename is ~/.ssh/known_hosts with an s).
However, per the SSH man page there is also a system-wide config file with known host keys:
/etc/ssh/ssh_known_hosts Systemwide list of known host keys. This file should be prepared by the system administrator to contain the public host keys of all machines in the organization. It should be world-readable. See sshd(8) for further details of the format of this file.
If you remove the expired fingerprint from that file as well, does it work?
This command should remove just that fingerprint without affecting other known hosts in the file:
sudo ssh-keygen -f "/etc/ssh/ssh_known_hosts" -R github.com
Upvotes: 1
Related Questions
- Fingerprint has already been taken gitlab
- Github not recognizing ssh key
- Error "The authenticity of host 'github.com' can't be established. RSA key fingerprint "
- "Fingerprint cannot be generated" when adding new SSH key to gitlab account
- Invalid Git RSA key fingerprint
- Authenticity host github.com (140.82.xxx.x) can't be established - RSA key fingerprint is SHA256:nThbgh78...Are you sure you want to continue?
- Fingerprint has already been taken - GIT
- Github ssh key added, checked, still doesn't work
- RSA fingerprints on github don't match ssh-keygen
- Github: New SSH key