SAP SSO and Secure Login Client offers an SSH Key Agent since version 2.0. However, when you have a lot of local X.509 certificates (we do not support those short-lived ones from Secure Login Server), SSH connections may fail. In most cases, this happens because of a small value in the SSH server´s MaxAuthTrials property: As an SSH agent tries all available certificates until the SSH daemon is happy with it, each non-fitting one is counted as failed authentication. So login success depends on the order of your certificates during SSH authentication, which cannot be configured.
With Secure Login Client 3.0 we now allow to set favorites in the list of X.509 certificates:
- Open the main window > File > Options > SSH Agent.
- Double click any certificates you want to use.
- Double click again to unselect one.
If no favorite is selected, all certificates are used, which is also the default.