How to Configuring .ssh/config for GitHub 2 Accounts for MacOs.

Managing multiple GitHub accounts on a single machine requires setting up separate SSH keys and configuring your system to use the correct…

Teeppiphat Phokaewkul

~3 min read · June 29, 2025 (Updated: June 29, 2025) · Free: No

Managing multiple GitHub accounts on a single machine requires setting up separate SSH keys and configuring your system to use the correct key for each account, allowing developers to seamlessly switch between personal and work repositories without authentication conflicts.

To create SSH keys for multiple GitHub accounts, first navigate to your SSH directory with cd ~/.ssh. Then generate unique keys for each account using:

ssh-keygen -t rsa -b 4096 -C "your_email@example.com" -f "github-username"

The -C flag adds a comment (typically your email) to help identify the key, while -f specifies the filename. For example, to create keys for personal and work accounts:

ssh-keygen -t rsa -C "personal_email@gmail.com" -f "github-personal"
ssh-keygen -t rsa -C "work_email@company.com" -f "github-work"

When prompted for a passphrase, you can either create one for added security or leave it empty. This process generates two files for each account: a private key (no extension) and a public key (.pub extension). The public key will later be added to your GitHub account settings under "SSH and GPG keys."

Adding Keys to SSH Agent

After creating your SSH keys, you need to add them to the SSH agent to manage your connections. Start the SSH agent with `eval "$(ssh-agent -s)"` and then add each key using the `ssh-add` command followed by the path to your private key file:

ssh-add ~/.ssh/github-personal
ssh-add ~/.ssh/github-work

This process loads your keys into memory, allowing SSH to use them automatically when connecting to remote servers. The agent will handle authentication without requiring you to specify which key to use each time, provided your SSH config file is properly set up. You can verify that your keys have been added successfully by running `ssh-add -l`, which lists all keys currently managed by the agent.

Configuring SSH Config File

The heart of managing multiple GitHub accounts lies in properly configuring the ~/.ssh/config file. This file tells your system which SSH key to use for different hosts. If the file doesn't exist, create it with touch ~/.ssh/config. Then add entries for each GitHub account:

# Personal GitHub account
Host github-personal
    HostName github.com
    User git
    IdentityFile ~/.ssh/github-personal
    IdentitiesOnly yes

# Work GitHub account
Host github-work
    HostName github.com
    User git
    IdentityFile ~/.ssh/github-work
    IdentitiesOnly yes

The Host parameter creates an alias that you'll use instead of the actual hostname when cloning or setting remote URLs. The IdentitiesOnly yes option ensures only the specified key is used for this connection, preventing authentication failures due to SSH trying multiple keys.

Using With Git Repositories

When working with Git repositories across multiple GitHub accounts, you'll need to modify how you clone and interact with repositories using the host aliases defined in your SSH config. For cloning repositories, use the appropriate host alias in the URL:

# For personal account
git clone [email protected]:username/repository.git

# For work account
git clone [email protected]:organization/repository.git

For existing repositories, update the remote URL in the .git/config file to use the correct host alias with git remote set-url origin [email protected]:username/repository.git. This approach ensures that Git uses the correct SSH key for authentication with each account, eliminating the need to manually switch credentials when moving between personal and work projects.

SSH Agent Fundamentals

The SSH agent is a key manager for SSH that holds your private keys in memory, unencrypted and ready for use. It functions as a security-focused helper program that tracks your identity keys and their passphrases, allowing you to authenticate just once per session instead of typing your passphrase repeatedly for each SSH connection. This implements a form of single sign-on (SSO) across your system.

What makes the SSH agent particularly secure is what it doesn't do:

It doesn't write key material to disk
It doesn't allow private keys to be exported
It only uses private keys for one purpose: signing authentication messages

On most Linux systems, ssh-agent starts automatically at login. You can verify it's running by checking the SSH_AGENT_SOCK environment variable with echo $SSH_AGENT_SOCK. If you need to start it manually, use eval "$(ssh-agent)"for Bourne-type shells or eval "$(ssh-agent -c)" for C-shell. Once running, add your keys with ssh-add ~/.ssh/keyname and verify they're loaded using ssh-add -l. The agent will then seamlessly provide authentication for all SSH connections until you log out or explicitly remove the keys, eliminating the need to specify which key to use for each connection.

#ssh #config #github #multi-account #ssh-agent