How to configure local fallback

[balupton]

Sometimes krypton fails to connect, and it seems it now supports a local ssh key fallback, how do I configure which local ssh key it should use?

Krypton ▶ Requesting SSH authentication from phone
Krypton ▶ Request timed out. Make sure your phone and workstation are paired and connected to the internet and the Krypton app is running.
Krypton ▶ Falling back to local keys.
sign_and_send_pubkey: signing failed: agent refused operation
no such identity: /Users/balupton/.ssh/id_ed25519: No such file or directory
no such identity: /Users/balupton/.ssh/id_rsa: No such file or directory
no such identity: /Users/balupton/.ssh/id_ecdsa: No such file or directory
no such identity: /Users/balupton/.ssh/id_dsa: No such file or directory
git@github.com: Permission denied (publickey).

[balupton]

I guess it is this section of ~/.ssh/config right?

# Added by Krypton
Host *
    IdentityAgent ~/.kr/krd-agent.sock
    ProxyCommand /usr/local/bin/krssh %h %p
    IdentityFile ~/.ssh/customisethis

[garandam]

I have done this:

• Generate SSH Key

  $ ssh-keygen -t rsa -b 4096 -C "your_email@example.com"

• Change Path where to generate the SSH Keys ~/.ssh/github.com/id_rsa
• Add to pub Key to Github => Settings | SSH and GPG Keys

Edit ~/.ssh/config

Host github.com
    IdentityFile ~/.ssh/github.com/id_rsa

# Added by Krypton
Host *
    IdentityAgent ~/.kr/krd-agent.sock
    ProxyCommand /usr/local/bin/krssh %h %p
    IdentityFile ~/.ssh/id_krypton
    IdentityFile ~/.ssh/id_ed25519
    IdentityFile ~/.ssh/id_rsa
    IdentityFile ~/.ssh/id_ecdsa
    IdentityFile ~/.ssh/id_dsa

[FernandoMiguel]

that isnt a fallback... that is using your computer local key as primary, which defeats the purpose of having it only in the secure enclave of your phone

[garandam]

@FernandoMiguel thx, but for me, it works. It always uses my krypton key but I would assume that when it doesn't work it uses my other SSH-Key, because both are registered within GitHub & it matches the host within the config.