So I'm trying to set up an EC2 instance on AWS and I've created a key pair and downloaded the .pem file. However, when I try to open it I get the error message:

I've also read about entering the following in the terminal to work around the issue:

security import pub_key.pem -k ~/Library/Keychains/login.keychain

but this doesn't work either (I get the following error message:

security: Error reading infile pub_key.pem: No such file or directory).

I've also tried just creating new key pairs but the problem persists.

Make sure you navigate to terminal to where the pem key file actually is. Then use

security import pub_key.pem -k ~/Library/Keychains/login.keychain

The keychain extension changed with Sierra. Now it is login.keychain-db. You should navigate to where the pem key file is and use

security import pub_key.pem -k ~/Library/Keychains/login.keychain-db

The .pem file contains your private key used for establishing an ssh connection with an Amazon EC2 instance (or any Linux instance).

Do not open (double-click) the .pem file. Instead, you will use it with the ssh command to connect with your instance, eg:

ssh -i yourfile.pem ec2-user@

See documentation: Connecting to Your Linux Instance Using SSH

  • I am having the same issue. Isn't this part of the idea of using the keychain to store certificates like this? I want to access my amazon key from other machines.
  • If this answer helped please accept it as well. If not let me know why.
  • Using the PEM isn't the problem. Storing it somewhere safe is. That's what the Keychain is for. Why Keychain doesn't allow this is the question.