View your keys
Open the SSH Keys panel for your instance to see every key currently accepted by the server. For each key we show: label, fingerprint (the SHA-256 of the public key), date added, and a Remove button.
The fingerprint is what your local SSH client also computes when you connect. You can match the value shown here against ssh-keygen -lf ~/.ssh/id_ed25519.pub on your own machine to be sure it is the right key.
Add an additional key
Click Add SSH key and follow the same flow described in How to upload an SSH public key. You can have multiple keys at the same time. Each key is independent, so a colleague can have their own key without ever seeing yours.
Remove a key
Find the key in the list and click Remove. The change is immediate. Any current SSH session opened with that key is disconnected the next time the server checks. We send a confirmation email to your account address every time a key is removed.
Rotate a key safely
Rotating a key means replacing it with a new one without ever being locked out. The safe order is:
Generate a new key pair
ssh-keygen to create a fresh key pair on your computer. Give the public file a different name so you don't overwrite the old one.Upload the new public key
Test the new key
ssh -i ~/.ssh/id_ed25519_new occcust_...@your-server and confirm you can land in a shell.Remove the old key
What if I lost my private key?
We cannot recover your private key. It only ever existed on your own computer. The recovery path is:
- Generate a fresh key pair on a machine you still have access to.
- Upload the new public key from the dashboard.
- Once you confirm the new key works, remove the lost one.
Warning
If you suspect your private key was stolen rather than just lost, also rotate any AI provider keys, account passwords, and other secrets that may have been stored on the server. Then open a support ticket so we can review the SSH activity logs for that key.