SOPHO
IP 5000/SOPHO IP6000
Command Reference Guide
116
configuration fails. If the public key configured is valid, it will be saved in public
key chain table of client.
For the related command, see
rsa peer-public-key, public-key-code begin
.
Example
Quit and save the configuration.
[NEC-PHILIPS-rsa-key-code]
public-key-code end
[NEC-PHILIPS-rsa-public-key]
rsa local-key-pair create Syntax
rsa local-key-pair create
View
System view
Parameter
None
Description
Using the
rsa local-key-pair create
command, you can generate the local RSA
host key pair and server key pair.
When this command is used to configure, the system will give alarm and prompt
that former key will be replaced if RSA key has existed. The view of generated
key pair is router name+ server and router name+ host, e.g., NEC-
PHILIPS_host and NEC-PHILIPS_server. This command will not be stored in
configuration file.
After this command is input, the system will prompt you to enter the digit of host
key. The digit of server key pair should differ from that of host key pair in 128
digits at least. The minimum length of server key pair and host key pair is 512
digits and the maximum length is 2048 digits. If there has been key pair, the
user should confirm whether to change it.
The primary operation to accomplish SSH login is to configure and generate
local RSA key pair. Before performing other SSH configurations, you must
accomplish the configuration of the
rsa local-key-pair create
command to
generate local key pair. It is necessary to execute this command only once and
it is unnecessary to execute again after the router restarts.
For the related command, see
rsa local-key-pair destroy
.
Example
Configure and generate local host key pair and server key pair.
[NEC-PHILIPS]
rsa local-key-pair create
The name for the keys will be: rtvrp_Host
% You already have RSA keys defined for rtvrp_Host
% Do you really want to replace them? [yes/no]:y
Choose the size of the key modulus in the range of 512 to 2048 for your Keys.
Choosing a key modulus greater than 512 may take a few minutes.
How many bits in the modulus [512]:512
Generating keys...
.....++++++++++++
........................++++++++++++
..........++++++++
............................++++++++
[NEC-PHILIPS]