208
[Sysname-pkey-key-code]FF1877A5E2E7B1FA4710DB0744F66F6600EEFE166F1B854E2371D5B952ADF6
B80EB5F52698FCF3D6
[Sysname-pkey-key-code]1F0C2EAAD9813ECB16C5C7DC09812D4EE3E9A0B074276FFD4AF2050BD4A9B1
DDE675AC30CB020301
[Sysname-pkey-key-code]0001
[Sysname-pkey-key-code] public-key-code end
[Sysname-pkey-public-key]
public-key local create
Syntax
public-key local create
{
dsa
|
rsa
}
View
System view
Default level
2: System level
Parameters
dsa
: Creates a DSA key pair.
rsa
: Creates an RSA key pair.
Description
Use the
public-key local create
command to create local key pairs. The created local key pairs are saved
automatically, and can survive a reboot.
When using this command to create DSA or RSA key pairs, you will be prompted to provide the length
of the key modulus. If the specified type of key pair already exists, the system will ask you whether you
want to overwrite it.
The ranges and default values of DSA and RSA key modulus lengths differ in FIPS mode and non-FIPS
mode:
•
In non-FIPS mode, the DSA and RSA key modulus lengths are in the range of 512 to 2048 bits, and
default to 1024 bits.
•
In FIPS mode, the DSA key modulus length is in the range of 1024 to 2048 bits, and defaults to
1024 bits. The RSA key modulus length must be 2048 bits.
Related commands:
public-key local destroy
and
display public-key local public
.
Examples
# Create local RSA key pairs.
<Sysname> system-view
[Sysname] public-key local create rsa
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Press CTRL+C to abort.
Input the bits of the modulus[default = 1024]:
Generating Keys...
++++++
++++++