solana/docs/src/hardware-wallets/README.md

---
title: Hardware Wallets
---

Signing a transaction requires a private key, but storing a private
key on your personal computer or phone leaves it subject to theft.
Adding a password to your key adds security, but many people prefer
to take it a step further and move their private keys to a separate
physical device called a _hardware wallet_. A hardware wallet is a
small handheld device that stores private keys and provides some
interface for signing transactions.

The Solana CLI has first class support for hardware wallets. Anywhere
you use a keypair filepath (denoted as `<KEYPAIR>` in usage docs), you
can pass a _keypair URL_ that uniquely identifies a keypair in a
hardware wallet.

## Supported Hardware Wallets

The Solana CLI supports the following hardware wallets:

- [Ledger Nano S](ledger.md)

## Specify a Keypair URL

Solana defines a keypair URL format to uniquely locate any Solana keypair on a
hardware wallet connected to your computer.

The keypair URL has the following form, where square brackets denote optional
fields:

```text
usb://<MANUFACTURER>[/<WALLET_ID>][?key=<DERIVATION_PATH>]
```

`WALLET_ID` is a globally unique key used to disambiguate multiple devices.

`DERVIATION_PATH` is used to navigate to Solana keys within your hardware wallet.
The path has the form `<ACCOUNT>[/<CHANGE>]`, where each `ACCOUNT` and `CHANGE`
are positive integers.

For example, a fully qualified URL for a Ledger device might be:

```text
usb://ledger/BsNsvfXqQTtJnagwFWdBS7FBXgnsK8VZ5CmuznN85swK?key=0/0
```

All derivation paths implicitly include the prefix `44'/501'`, which indicates
the path follows the [BIP44 specifications](https://github.com/bitcoin/bips/blob/master/bip-0044.mediawiki)
and that any derived keys are Solana keys (Coin type 501). The single quote
indicates a "hardened" derivation. Because Solana uses Ed25519 keypairs, all
derivations are hardened and therefore adding the quote is optional and
unnecessary.
Move from gitbook to docusaurus, build docs in Travis CI (#10970) * fix: ignore unknown fields in more RPC responses * Remove mdbook infrastructure * Delete gitattributes and other theme related items Move all docs to /docs folder to support Docusaurus * all docs need to be moved to /docs * can be changed in the future Add Docusaurus infrastructure * initialize docusaurus repo Remove trailing whitespace, add support for eslint Change Docusaurus configuration to support `src` * No need to rename the folder! Change a setting and we're all good to go. * Fixing rebase items * Remove unneccessary markdown file, fix type * Some fonts are hard to read. Others, not so much. Rubik, you've been sidelined. Roboto, into the limelight! * As much as we all love tutorials, I think we all can navigate around a markdown file. Say goodbye, `mdx.md`. * Setup deployment infrastructure * Move docs job from buildkite to travic * Fix travis config * Add vercel token to travis config * Only deploy docs after merge * Docker rust env * Revert "Docker rust env" This reverts commit f84bc208e807aab1c0d97c7588bbfada1fedfa7c. * Build CLI usage from docker * Pacify shellcheck * Run job on PR and new commits for publication * Update README * Fix svg image building * shellcheck Co-authored-by: Michael Vines <mvines@gmail.com> Co-authored-by: Ryan Shea <rmshea@users.noreply.github.com> Co-authored-by: publish-docs.sh <maintainers@solana.com> 2020-07-10 22:11:07 -07:00			`---`
			`title: Hardware Wallets`
			`---`
Ledger hardware wallet docs (#8472) * Update protocol documentation * Correct app-version command const * Rough initial Ledger docs * Add more docs * Cleanup * Add remote-wallet to docs TOC Co-authored-by: Greg Fitzgerald <greg@solana.com> 2020-02-26 10:04:28 -08:00
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00			`Signing a transaction requires a private key, but storing a private`
			`key on your personal computer or phone leaves it subject to theft.`
			`Adding a password to your key adds security, but many people prefer`
			`to take it a step further and move their private keys to a separate`
Move from gitbook to docusaurus, build docs in Travis CI (#10970) * fix: ignore unknown fields in more RPC responses * Remove mdbook infrastructure * Delete gitattributes and other theme related items Move all docs to /docs folder to support Docusaurus * all docs need to be moved to /docs * can be changed in the future Add Docusaurus infrastructure * initialize docusaurus repo Remove trailing whitespace, add support for eslint Change Docusaurus configuration to support `src` * No need to rename the folder! Change a setting and we're all good to go. * Fixing rebase items * Remove unneccessary markdown file, fix type * Some fonts are hard to read. Others, not so much. Rubik, you've been sidelined. Roboto, into the limelight! * As much as we all love tutorials, I think we all can navigate around a markdown file. Say goodbye, `mdx.md`. * Setup deployment infrastructure * Move docs job from buildkite to travic * Fix travis config * Add vercel token to travis config * Only deploy docs after merge * Docker rust env * Revert "Docker rust env" This reverts commit f84bc208e807aab1c0d97c7588bbfada1fedfa7c. * Build CLI usage from docker * Pacify shellcheck * Run job on PR and new commits for publication * Update README * Fix svg image building * shellcheck Co-authored-by: Michael Vines <mvines@gmail.com> Co-authored-by: Ryan Shea <rmshea@users.noreply.github.com> Co-authored-by: publish-docs.sh <maintainers@solana.com> 2020-07-10 22:11:07 -07:00			`physical device called a _hardware wallet_. A hardware wallet is a`
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00			`small handheld device that stores private keys and provides some`
			`interface for signing transactions.`
Ledger hardware wallet docs (#8472) * Update protocol documentation * Correct app-version command const * Rough initial Ledger docs * Add more docs * Cleanup * Add remote-wallet to docs TOC Co-authored-by: Greg Fitzgerald <greg@solana.com> 2020-02-26 10:04:28 -08:00
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00			`The Solana CLI has first class support for hardware wallets. Anywhere`
			you use a keypair filepath (denoted as `<KEYPAIR>` in usage docs), you
Move from gitbook to docusaurus, build docs in Travis CI (#10970) * fix: ignore unknown fields in more RPC responses * Remove mdbook infrastructure * Delete gitattributes and other theme related items Move all docs to /docs folder to support Docusaurus * all docs need to be moved to /docs * can be changed in the future Add Docusaurus infrastructure * initialize docusaurus repo Remove trailing whitespace, add support for eslint Change Docusaurus configuration to support `src` * No need to rename the folder! Change a setting and we're all good to go. * Fixing rebase items * Remove unneccessary markdown file, fix type * Some fonts are hard to read. Others, not so much. Rubik, you've been sidelined. Roboto, into the limelight! * As much as we all love tutorials, I think we all can navigate around a markdown file. Say goodbye, `mdx.md`. * Setup deployment infrastructure * Move docs job from buildkite to travic * Fix travis config * Add vercel token to travis config * Only deploy docs after merge * Docker rust env * Revert "Docker rust env" This reverts commit f84bc208e807aab1c0d97c7588bbfada1fedfa7c. * Build CLI usage from docker * Pacify shellcheck * Run job on PR and new commits for publication * Update README * Fix svg image building * shellcheck Co-authored-by: Michael Vines <mvines@gmail.com> Co-authored-by: Ryan Shea <rmshea@users.noreply.github.com> Co-authored-by: publish-docs.sh <maintainers@solana.com> 2020-07-10 22:11:07 -07:00			`can pass a _keypair URL_ that uniquely identifies a keypair in a`
Add docs on wallets and generating keys (#8905) * Add docs on wallets and generating keys * Directory wallet -> FS wallet * New section * Add instructions for receiving tokens * Add missing file * Reorg * Polish * Polish * Prefer solana-keygen * Polish * on -> in Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * wallets -> wallet Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * compare -> contrast Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * de-hyphenate Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Update docs/src/cli/choose-a-wallet.md Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * typo Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Update docs/src/cli/generate-keys.md Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * proof -> prove Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Apply review feedback * Apply more review feedback * More review feedback Co-authored-by: Tyera Eulberg <teulberg@gmail.com> 2020-03-18 14:21:48 -07:00			`hardware wallet.`
Ledger hardware wallet docs (#8472) * Update protocol documentation * Correct app-version command const * Rough initial Ledger docs * Add more docs * Cleanup * Add remote-wallet to docs TOC Co-authored-by: Greg Fitzgerald <greg@solana.com> 2020-02-26 10:04:28 -08:00
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00			`## Supported Hardware Wallets`
Ledger hardware wallet docs (#8472) * Update protocol documentation * Correct app-version command const * Rough initial Ledger docs * Add more docs * Cleanup * Add remote-wallet to docs TOC Co-authored-by: Greg Fitzgerald <greg@solana.com> 2020-02-26 10:04:28 -08:00
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00			`The Solana CLI supports the following hardware wallets:`
Move from gitbook to docusaurus, build docs in Travis CI (#10970) * fix: ignore unknown fields in more RPC responses * Remove mdbook infrastructure * Delete gitattributes and other theme related items Move all docs to /docs folder to support Docusaurus * all docs need to be moved to /docs * can be changed in the future Add Docusaurus infrastructure * initialize docusaurus repo Remove trailing whitespace, add support for eslint Change Docusaurus configuration to support `src` * No need to rename the folder! Change a setting and we're all good to go. * Fixing rebase items * Remove unneccessary markdown file, fix type * Some fonts are hard to read. Others, not so much. Rubik, you've been sidelined. Roboto, into the limelight! * As much as we all love tutorials, I think we all can navigate around a markdown file. Say goodbye, `mdx.md`. * Setup deployment infrastructure * Move docs job from buildkite to travic * Fix travis config * Add vercel token to travis config * Only deploy docs after merge * Docker rust env * Revert "Docker rust env" This reverts commit f84bc208e807aab1c0d97c7588bbfada1fedfa7c. * Build CLI usage from docker * Pacify shellcheck * Run job on PR and new commits for publication * Update README * Fix svg image building * shellcheck Co-authored-by: Michael Vines <mvines@gmail.com> Co-authored-by: Ryan Shea <rmshea@users.noreply.github.com> Co-authored-by: publish-docs.sh <maintainers@solana.com> 2020-07-10 22:11:07 -07:00
			`- [Ledger Nano S](ledger.md)`
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00
Clean up Ledger instructions (#10047) Co-authored-by: publish-docs.sh <maintainers@solana.com> 2020-05-14 13:03:16 -07:00			`## Specify a Keypair URL`
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00
Add docs on wallets and generating keys (#8905) * Add docs on wallets and generating keys * Directory wallet -> FS wallet * New section * Add instructions for receiving tokens * Add missing file * Reorg * Polish * Polish * Prefer solana-keygen * Polish * on -> in Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * wallets -> wallet Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * compare -> contrast Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * de-hyphenate Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Update docs/src/cli/choose-a-wallet.md Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * typo Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Update docs/src/cli/generate-keys.md Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * proof -> prove Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Apply review feedback * Apply more review feedback * More review feedback Co-authored-by: Tyera Eulberg <teulberg@gmail.com> 2020-03-18 14:21:48 -07:00			`Solana defines a keypair URL format to uniquely locate any Solana keypair on a`
			`hardware wallet connected to your computer.`
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00
Add docs on wallets and generating keys (#8905) * Add docs on wallets and generating keys * Directory wallet -> FS wallet * New section * Add instructions for receiving tokens * Add missing file * Reorg * Polish * Polish * Prefer solana-keygen * Polish * on -> in Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * wallets -> wallet Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * compare -> contrast Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * de-hyphenate Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Update docs/src/cli/choose-a-wallet.md Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * typo Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Update docs/src/cli/generate-keys.md Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * proof -> prove Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Apply review feedback * Apply more review feedback * More review feedback Co-authored-by: Tyera Eulberg <teulberg@gmail.com> 2020-03-18 14:21:48 -07:00			`The keypair URL has the following form, where square brackets denote optional`
			`fields:`
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00
			```text
Add docs on wallets and generating keys (#8905) * Add docs on wallets and generating keys * Directory wallet -> FS wallet * New section * Add instructions for receiving tokens * Add missing file * Reorg * Polish * Polish * Prefer solana-keygen * Polish * on -> in Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * wallets -> wallet Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * compare -> contrast Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * de-hyphenate Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Update docs/src/cli/choose-a-wallet.md Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * typo Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Update docs/src/cli/generate-keys.md Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * proof -> prove Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Apply review feedback * Apply more review feedback * More review feedback Co-authored-by: Tyera Eulberg <teulberg@gmail.com> 2020-03-18 14:21:48 -07:00			`usb://<MANUFACTURER>[/<WALLET_ID>][?key=<DERIVATION_PATH>]`
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00			```

Add docs on wallets and generating keys (#8905) * Add docs on wallets and generating keys * Directory wallet -> FS wallet * New section * Add instructions for receiving tokens * Add missing file * Reorg * Polish * Polish * Prefer solana-keygen * Polish * on -> in Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * wallets -> wallet Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * compare -> contrast Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * de-hyphenate Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Update docs/src/cli/choose-a-wallet.md Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * typo Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Update docs/src/cli/generate-keys.md Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * proof -> prove Co-Authored-By: Tyera Eulberg <teulberg@gmail.com> * Apply review feedback * Apply more review feedback * More review feedback Co-authored-by: Tyera Eulberg <teulberg@gmail.com> 2020-03-18 14:21:48 -07:00			`WALLET_ID` is a globally unique key used to disambiguate multiple devices.
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00
			`DERVIATION_PATH` is used to navigate to Solana keys within your hardware wallet.
			The path has the form `<ACCOUNT>[/<CHANGE>]`, where each `ACCOUNT` and `CHANGE`
			`are positive integers.`

			`For example, a fully qualified URL for a Ledger device might be:`

			```text
Remove product string from device keypair URL (#8942) * Remove product string from device url * Update docs 2020-03-18 12:36:48 -07:00			`usb://ledger/BsNsvfXqQTtJnagwFWdBS7FBXgnsK8VZ5CmuznN85swK?key=0/0`
Hoist USB URL docs (#8894) 2020-03-16 16:07:39 -07:00			```

Clean up Ledger instructions (#10047) Co-authored-by: publish-docs.sh <maintainers@solana.com> 2020-05-14 13:03:16 -07:00			All derivation paths implicitly include the prefix `44'/501'`, which indicates
			`the path follows the [BIP44 specifications](https://github.com/bitcoin/bips/blob/master/bip-0044.mediawiki)`
Move from gitbook to docusaurus, build docs in Travis CI (#10970) * fix: ignore unknown fields in more RPC responses * Remove mdbook infrastructure * Delete gitattributes and other theme related items Move all docs to /docs folder to support Docusaurus * all docs need to be moved to /docs * can be changed in the future Add Docusaurus infrastructure * initialize docusaurus repo Remove trailing whitespace, add support for eslint Change Docusaurus configuration to support `src` * No need to rename the folder! Change a setting and we're all good to go. * Fixing rebase items * Remove unneccessary markdown file, fix type * Some fonts are hard to read. Others, not so much. Rubik, you've been sidelined. Roboto, into the limelight! * As much as we all love tutorials, I think we all can navigate around a markdown file. Say goodbye, `mdx.md`. * Setup deployment infrastructure * Move docs job from buildkite to travic * Fix travis config * Add vercel token to travis config * Only deploy docs after merge * Docker rust env * Revert "Docker rust env" This reverts commit f84bc208e807aab1c0d97c7588bbfada1fedfa7c. * Build CLI usage from docker * Pacify shellcheck * Run job on PR and new commits for publication * Update README * Fix svg image building * shellcheck Co-authored-by: Michael Vines <mvines@gmail.com> Co-authored-by: Ryan Shea <rmshea@users.noreply.github.com> Co-authored-by: publish-docs.sh <maintainers@solana.com> 2020-07-10 22:11:07 -07:00			`and that any derived keys are Solana keys (Coin type 501). The single quote`
Clean up Ledger instructions (#10047) Co-authored-by: publish-docs.sh <maintainers@solana.com> 2020-05-14 13:03:16 -07:00			`indicates a "hardened" derivation. Because Solana uses Ed25519 keypairs, all`
			`derivations are hardened and therefore adding the quote is optional and`
			`unnecessary.`