AAA Authorization and Accounting
3-79
3
CLI
– This example generates a host-key pair using both the RSA and DSA
algorithms, stores the keys to flash memory, and then displays the host’s public keys.
Importing User Public Keys
A user’s Public Key must be uploaded to the switch in order for the user to be able to
log in using the public key authentication mechanism. If the user’s public key does
not exist on the switch, SSH will revert to the interactive password authentication
mechanism to complete authentication.
Field Attributes
•
Public-Key of
user
– The RSA and DSA public keys for the selected user.
- RSA: The first field indicates the size of the host key (e.g., 1024), the second
field is the encoded public exponent (e.g., 37), and the last string is the encoded
modulus.
- DSA: The first field indicates that SSH version 2 was used to create the key. The
second field contains the key comment. The third string is the encoded modulus,
and the last field is a comment denoting the end of the key.
•
User Name
– This drop-down box selects the user who’s public key you wish to
manage. Note that you must first create users on the User Accounts page ( See
“Configuring User Accounts” on page 3-52).
•
Public-Key Type
– This drop-down box selects the type of public key you wish to
upload.
- RSA: The switch will accept an SSH version 1 formatted RSA encrypted public
key.
- DSA: The switch will accept an SSH version 2 formatted DSA encrypted public
key.
•
TFTP Server IP Address
– The IP address of the TFTP server that contains the
public key file you wish to import. (Default: 0.0.0.0)
Console#ip ssh crypto host-key generate
4-47
Console#ip ssh save host-key
4-47
Console#show public-key host
4-47
Host:
RSA:
1024 65537 127250922544926402131336514546131189679055192360076028653006761
82409690947448320102524878965977592168322225584652387791546479807396314033
86925793105105765212243052807865885485789272602937866089236841423275912127
60325919683697053439336438445223335188287173896894511729290510813919642025
190932104328579045764891
DSA:
ssh-dss AAAAB3NzaC1kc3MAAACBAN6zwIqCqDb3869jYVXlME1sHL0EcE/Re6hlasfEthIwmj
hLY4O0jqJZpcEQUgCfYlum0Py9ieGWQ8f2gobUZKIICuKg6vjO9XTs7XKc05xfzkBi
KviDa+26vFOgvUDFedlh5v8r0ea2rpnO6DkZAAAAFQCNZn/x17dwpW8RrV
DQ6QAAAIEAptkGeB6B5hwagH4gUOCY6i1TmrmSiJgfwO9OqRPUuzxatOo7
drSx5R9ywsa1cWqHeFY5ilc3lDCNBueeRS+azTKIk/zrJh8GLG
Nq375R55yRxFvmcGIn/Q7IphPqyJ3o9MK8LFDfmJEAAACAL8A6tESiswP2OFqX7VGoEbzVDSOI
RTMFy3iUXtvGyQAOVSy67Mfc3lMtgqPRUOYXDiwIBp5NXgilCg5z7VqbmRm28mWc5a//f8TUAg
PNWKV6W0hqmshQdoXKNTZj0uTwWfjO5Kytdn4MdoTHgrbl/DMdAfjnte8MZZs=
Console#
Summary of Contents for 6128PL2
Page 2: ......
Page 8: ...viii ...
Page 26: ...Contents xviii ...
Page 30: ...Tables xxii ...
Page 52: ...Initial Configuration 2 10 2 ...
Page 308: ...Configuring the Switch 3 256 3 ...
Page 473: ...SNMP Commands 4 165 4 ...
Page 644: ...Command Line Interface 4 336 4 ...
Page 648: ...Software Specifications A 4 A ...
Page 663: ......