Why Keymaster?
Beautiful TUI
Modern interactive terminal interface that makes key management intuitive and efficient
Agentless
Uses standard SSH/SFTP. No remote agents or complex server setup required
Auto-Hardening
Automatically applies strict SFTP-only restrictions to system keys on every deployment
Safe Rotation
Rotate system keys without losing access to offline hosts
Portable Database
Backup to JSON, restore, or migrate from SQLite to PostgreSQL/MySQL
Multi-Language
Fully internationalized TUI with community translations
Get Started in Minutes
From zero to managing your first host in just a few steps
Install Keymaster
Install the CLI using Go (requires Go 1.20 or later)
go install github.com/toeirei/keymaster/cmd/keymaster@latestπ‘ The binary will be available at $GOPATH/bin/keymaster
Initialize Database
Launch the interactive TUI to create your database and configuration
keymasterπ Database and config are created automatically in your user config directory
Generate System Key
In the TUI, navigate to Rotate System Keys to create your initial system key
βΈ Rotate System Keys β Generate New Key
π This key allows Keymaster to manage all your hosts securely
Add Your First Host
Bootstrap a remote host to bring it under Keymaster management
β¨ The host is now fully managedβKeymaster handles the rest
Common Commands
keymaster deploy
Deploy to all hosts
keymaster audit
Check for configuration drift
keymaster backup
Create compressed backup
keymaster trust-host user@host
Add new managed host
Ready to simplify your SSH key management?
Join developers and sysadmins who chose simplicity over complexity