Remote Signer
Operator V3 Documentation
This page covers Operator Service V3. If your Vault version is 5+ on Ethereum or 3+ on Gnosis, refer to the V4 Remote Signer →.
The Remote Signer mode lets you isolate validator signing keys from the Operator Service. Instead of storing keystores locally, the Operator queries a remote signer like Web3Signer ↗ for deposit and exit message signatures.
Prerequisites
Complete the following steps before proceeding:
- Installation → completed
- Prepare Operator → — keys generated and deposit data uploaded
- Web3Signer ↗ running and accessible at your specified URL
Setup Remote Signer
Upload the keystores to a remote signer. If you already have private keys uploaded to the remote signer, proceed to Start Operator Service below.
Example Usage
./operator setup-remote-signer
Example Output
Enter your vault address: 0xf82f6e46d0d0a9536b9ca4bc480372eeafcd9e6c
Enter the URL of the remote signer (e.g. https://signer:9000): https://localhost:9000
Successfully imported 10 keys into remote signer.
Remove local keystores? [y/N]: y
Removed keystores from local filesystem.
Done. Successfully configured operator to use remote signer for 10 public key(s)!
setup-remote-signer flags
| Flag | Description |
|---|---|
--remote-signer-url | URL of the remote signer |
--vault | Vault address |
--dappnode | Use with Dappnode Staking Brain. Requires --execution-endpoints |
--execution-endpoints | Comma-separated execution node API endpoints. Required with --dappnode |
--data-dir | Path where Vault data is stored. Default: ~/.stakewise |
--keystores-dir | Directory with validator keys in EIP-2335 ↗ format |
Start Operator Service
In V3, pass the --remote-signer-url flag to the start command:
./operator start \
--vault=0x834F27bC8670491b75af512d943f01D5383F87Cf \
--consensus-endpoints=https://consensus-node \
--execution-endpoints=https://execution-node \
--remote-signer-url=https://remote-signer:9000
You should see a message similar to this one after starting the operator:
Using remote signer at http://remote-signer:9000 for 20 public keys
See all available options in the Start Operator → reference.