Free Tool

Analyze an authorized_keys file

Paste the contents of an authorized_keys file to audit every entry: key type and size, fingerprints, deprecated algorithms, weak keys, duplicates, and notable options.

Runs entirely in your browser. Nothing you paste or generate is uploaded.

keys with problems unparseable

Cleaning up once helps, but keys drift back without ongoing control. Try GrantSSH free to keep authorized_keys in sync with active permissions.

Why audit authorized_keys?

Over time, authorized_keys files accumulate keys: old laptops, departed teammates, automation that was never cleaned up. Stale and weak keys are a common, quiet source of risk because nothing forces them to be removed.

This is exactly the problem GrantSSH addresses: keys are present only while access is active, and removed automatically when it ends. See how it works.

Frequently asked questions

Is the file uploaded anywhere?
No. The file is parsed entirely in your browser. Nothing is sent to GrantSSH or any server.
What does it flag?
Deprecated DSA keys, RSA keys under 2048 bits, duplicate keys, forced commands, and keys without restriction options. Lines that are not valid keys are reported too.
Does a clean report mean access is correct?
No. This checks key hygiene only. Whether each key should be present at all is an access-management question, which is what GrantSSH manages.

Ready for Controlled SSH Access?

Create your account and start granting time-limited SSH access in minutes.

Set up controlled SSH access in minutes.