Using the Passphrase Cache
The passphrase cache lets you store user key passphrases. You can use this cache to minimize the number of times you have to enter passphrases for public key authentication requests.
Typically, you are prompted for a passphrase each time a public key authentication request is made. However, if you enable passphrase caching and set the cache expiration time, you enter the passphrase for the first request. Thereafter, up to the specified expiration time, the passphrase is retained in memory and used against subsequent public key requests. If all of your user keys use same passphrase, you are not prompted again. If all passphrases in the cache fail against a particular key, then you are prompted for the passphrase for that particular key.
Passphrase Caching and S-Agent Requests
The passphrase cache is always available for s-agent requests, even if it is disabled. When you attempt to connect a public-key-authenticated session for which s-agent authentication is enabled, Connectivity Secure Shell opens all of the user keys in the keystore and prompts you if passphrases for these keys are not already in the cache. The passphrases are cached in advance in the event that you cannot respond when subsequent s-agent authentication requests are received.
To cache passphrases:
- Under Settings, in the left pane of the console, click General. The general settings appear.
- Select Use Passphrase Cache.
- In the Passphrase Timeout box, specify the amount of time in minutes that the passphrases in the cache are to remain active.
- Click Apply.
Generating Private/Public Keypairs