Reputation: 81
Error "communication with agent failed" when SSH_AUTH_SOCK is set but SSH_AGENT_PID is not set
I'm using Visual Studio Code v1.67 on Windows 10 v21H2 to connect to an Ubuntu Server 22.04 machine. I'm running an SSH agent (v8.1) on Windows. I've set ForwardAgent yes in my Windows config file. When I start an Ubuntu terminal, the agent appears to be running in Ubuntu and has my Windows key. I can see it via ssh-add -l. SSH_AUTH_SOCK is set to something like /run/user/1000/vscode-ssh-auth-sock-12345678 (a link to /tmp/ssh-XXXXABCDEF/agent.1234), but SSH_AGENT_PID is not set.
If I try ssh -Tvvv [email protected] it does not use the key in the agent and asks for my Ubuntu key password. In the verbose SSH output are the messages:
debug2: get_agent_identities: ssh_agent_bind_hostkey: communication with agent failed
debug1: get_agent_identities: ssh_fetch_identitylist: communication with agent failed
I can start a new agent and add the key on my Ubuntu machine using eval `ssh-agent`; ssh-add. This sets both SSH_AUTH_SOCK and SSH_AGENT_PID. SSH_AUTH_SOCK now has a path like /tmp/ssh-XXXXXXABCDEF/agent.1234. Now, when I test with ssh -T [email protected] it works. I don't have to enter my password. I can do things like git push to a remote via ssh without entering a password.
I would prefer to use the Windows agent key forwarded by VS Code. That way I never have to enter a password. I don't see why ssh cannot access it. This worked before I upgraded from Ubuntu 21.10 to 22.04. Is the problem with openssh? It's v8.9 on Ubuntu Server 22.04. I think it's v8.4 on US 21.10. Or is the problem with VS Code? Could the problem be that VS Code is not setting SSH_AGENT_PID when forwarding the key? Is it necessary to set SSH_AGENT_PID when using the agent?
Edited: I noticed that if I set just SSH_AUTH_SOCK from ssh-agent, and leave SSH_AGENT_PID empty, and then add the key on my Ubuntu machine, it works (ssh -T [email protected], etc). So, it seems SSH_AGENT_PID is not necessary in some cases. The problem could be there's something wrong with the SSH_AUTH_SOCK file created when VS Code forwards the agent.
Help appreciated.
Upvotes: 4
Views: 4281
Answers (1)
Reputation: 459
Same problem occurred to me yesterday when I was trying to forward my key to remote server in VSCode. It turned out the default installation is too old and incompatible with the server's protocol.
Here is how I solve it:
Open
PowerShellwith elevated privilegesUninstall the default installation using:
Remove-WindowsCapability -Online -Name OpenSSH.Client~~~~0.0.1.0(Optional) Restart if you see something like
UninstallPendinginstead ofNotPresentCheck if the default OpenSSH is completely uninstalled
Get-WindowsCapability -Online | Where-Object Name -like 'OpenSSH*'Install latest client only:
winget install Microsoft.OpenSSH.Beta --override ADDLOCAL=Clientor follow Install Win32 OpenSSH Using MSI if you don't have
wingetCheck installation and verify the version >=
8.9.1.0:Get-Command ssh-agent(Optional) Start the
ssh-agentservice if youStart-Service ssh-agent Set-Service ssh-agent -StartupType Automatic Get-Service ssh-agent(Optional) Add following lines to
%USERPROFILE%/.ssh/config:Host server ForwardAgent yes AddKeysToAgent yes
Upvotes: 11
Related Questions
- Could not open a connection to your authentication agent
- Ssh fails to use private key from ssh-agent: communication with agent failed
- ssh-agent doesn't work however eval+ssh-add does, why?
- ssh-add "Error connecting to agent: Connection refused"
- Using an ssh agent from emacs in server mode
- Cannot connect to ssh-agent with automation script in Linux
- ssh-agent: Could not open a connection to your authentication agent
- ssh agent started but can't connect to authentication agent
- start ssh-agent in remote ssh session
- Could not open connection to authentication agent even though SSH_AUTH_SOCK defined