SSH Key Generator
SecurityGenerate SSH key pairs (Ed25519, RSA, ECDSA) for server authentication. Get public and private keys in OpenSSH format, ready to paste into ~/.ssh/authorized_keys.
Key generation happens entirely in your browser via the WebCrypto API — keys never leave your device.
Comment
Public Key
Public key will appear here
Paste into ~/.ssh/authorized_keys
Private Key
Private key will appear here
Save to ~/.ssh/id_ed25519
About SSH Key Generator
SSH keys provide password-free, cryptographically secure authentication for remote servers, Git hosts, and cloud providers. This tool generates key pairs (Ed25519 or RSA) in OpenSSH format — public key ready to paste into ~/.ssh/authorized_keys, private key in the standard OpenSSH or PEM container format. Unlike the RSA/ECDSA Key Generator (which targets JWT signing and outputs PKCS8/SPKI PEM), this tool is purpose-built for SSH authentication with a comment field that embeds an identity label in the key. Everything runs entirely in your browser — no keys are ever sent to a server.
Features
- ✓Ed25519 key generation with full OpenSSH wire format (authorized_keys public + openssh-key-v1 private)
- ✓RSA key generation at 2048-bit and 4096-bit modulus lengths
- ✓Public key in authorized_keys format — paste directly into ~/.ssh/authorized_keys or GitHub/GitLab SSH settings
- ✓Private key in -----BEGIN OPENSSH PRIVATE KEY----- container for Ed25519
- ✓Configurable comment field embedded in the key (e.g. user@host or your email)
- ✓One-click copy and download (.pub / .pem) for each key
- ✓Private-key warning banner displayed after generation
- ✓100% client-side via WebCrypto API — keys never leave your browser
Common Use Cases
- Setting up passwordless SSH login to Linux/macOS servers
- Configuring SSH access for GitHub, GitLab, Bitbucket or Azure DevOps
- Provisioning cloud VMs on AWS, GCP or Azure
- Creating deploy keys for CI/CD pipelines or container builds
- Generating temporary SSH keys for development or testing environments
Frequently Asked Questions
QWhat is the difference between this tool and the RSA/ECDSA Key Generator?
This tool is designed for SSH authentication. It outputs public keys in authorized_keys format (e.g. 'ssh-ed25519 AAAA… user@host') and private keys in the OpenSSH container format — the format expected by SSH clients like OpenSSH, PuTTY and ssh-agent. The RSA/ECDSA Key Generator targets JWT signing: it outputs PKCS8/SPKI PEM files used by JWT libraries, TLS stacks and OpenSSL. Even when both tools generate an RSA key, the binary format and intended use are different.
QWhy choose Ed25519 over RSA?
Ed25519 is recommended for most SSH use cases — it's faster to generate, produces compact 68-character public keys, and offers stronger security than 2048-bit RSA. All modern SSH servers and clients (OpenSSH 6.5+) support it.
QWhat should I do with the private key?
Save the private key to ~/.ssh/id_ed25519 (Ed25519) or ~/.ssh/id_rsa (RSA) with permissions 600. Never share it. Add the public key to your server's ~/.ssh/authorized_keys file or paste it into your Git host's SSH key settings.
QWill these keys work with GitHub, GitLab or Bitbucket?
Yes — both Ed25519 and RSA keys in OpenSSH format are fully supported. Paste the public key (the one-line authorized_keys output) into your account's SSH key settings.