Command Line Interface
4-142
4
Example
ip ssh crypto host-key generate
This command generates the host key pair (i.e., public and private).
Syntax
ip ssh crypto host-key generate
[
dsa
|
rsa
]
•
dsa
– DSA (Version 2) key type.
•
rsa
– RSA (Version 1) key type.
Default Setting
Generates both the DSA and RSA key pairs.
Command Mode
Privileged Exec
Command Usage
• The switch uses only RSA Version 1 for SSHv1.5 clients and DSA Version 2
for SSHv2 clients.
• This command stores the host key pair in memory (i.e., RAM). Use the
ip ssh
save host-key
command to save the host key pair to flash memory.
• Some SSH client programs automatically add the public key to the known
hosts file as part of the configuration process. Otherwise, you must manually
create a known hosts file and place the host public key in it.
• The SSH server uses this host key to negotiate a session key and encryption
method with the client trying to connect to it.
Example
Related Commands
ip ssh crypto zeroize (4-142)
ip ssh save host-key (4-143)
ip ssh crypto zeroize
This command clears the host key from memory (i.e. RAM).
Syntax
ip ssh crypto zeroize
[
dsa
|
rsa
]
•
dsa
– DSA key type.
•
rsa
– RSA key type.
Console#delete public-key admin dsa
Console#
Console#ip ssh crypto host-key generate dsa
Console#
Summary of Contents for 6152PL2 FICHE
Page 2: ......
Page 6: ...vi ...
Page 8: ...viii ...
Page 32: ...Tables xxxii ...
Page 38: ...Figures xxxviii ...
Page 56: ...Initial Configuration 2 10 2 ...
Page 378: ...Configuring the Switch 3 322 3 ...
Page 817: ......