restic-key - Man Page

Manage keys (passwords)


restic key [flags] [list|add|remove|passwd] [ID]


The "key" command manages keys (passwords) for accessing the repository.

Exit Status

Exit status is 0 if the command was successful, and non-zero if there was any error.


-h,  --help[=false]

help for key


the hostname for new keys


file from which to read the new password


the username for new keys

Options Inherited from Parent Commands


file to load root certificates from (default: use system certificates)


set the cache directory. (default: use system default cache directory)


auto remove old cache directories


set output mode to JSON for commands that support it


key ID of key to try decrypting first (default: $RESTIC_KEY_HINT)


limits downloads to a maximum rate in KiB/s. (default: unlimited)


limits uploads to a maximum rate in KiB/s. (default: unlimited)


do not use a local cache


do not lock the repository, this allows some operations on read-only repositories

-o,  --option=[]

set extended option (key=value, can be specified multiple times)


shell command to obtain the repository password from (default: $RESTIC_PASSWORD_COMMAND)

-p,  --password-file=""

file to read the repository password from (default: $RESTIC_PASSWORD_FILE)

-q,  --quiet[=false]

do not output comprehensive progress report

-r,  --repo=""

repository to backup to or restore from (default: $RESTIC_REPOSITORY)


file to read the repository location from (default: $RESTIC_REPOSITORY_FILE)


path to a file containing PEM encoded TLS client certificate and private key

-v,  --verbose[=0]

be verbose (specify multiple times or a level using --verbose=n, max level/times is 3)

See Also


Referenced By


Jan 2017 generated by `restic generate`