NOTE:
Only SSH 1.5 uses the RSA server key pair.
To create a local asymmetric key pair:
Step
Enter system view.
1.
2.
Create a local key pair.
Displaying or exporting the local host public key
In some applications, such as SSH, to allow your local device to be authenticated by a peer device
through digital signature, you must display or export the local host public key, which will then be
specified on the peer device.
To display or export the local host public key, choose one of the following methods:
Displaying and recording the host public key information
•
Displaying the host public key in a specific format and saving it to a file
•
Exporting the host public key in a specific format to a file
•
If your local device functions to authenticate the peer device, you must specify the peer public key on the
local device. For more information, see
Displaying and recording the host public key information
To display the local public key:
Task
Display the local RSA public key.
Display the local ECDSA public
key.
Display the local DSA host public
key.
The display public-key local rsa public command displays both the RSA server and host public keys.
Recording the RSA host public key is enough.
After displaying the host public key, record the key information for manual configuration of the key on the
peer device.
Command
system-view
•
In non-FIPS mode:
public-key local create { dsa |
ecdsa { secp192r1 |
secp256r1 } | rsa }
•
In FIPS mode:
public-key local create { dsa |
ecdsa secp256r1 | rsa }
"Specifying the peer public key on the local
Command
display public-key local rsa public [ | { begin
| exclude | include } regular-expression ]
display public-key local ecdsa public [ |
{ begin | exclude | include }
regular-expression ]
display public-key local dsa public [ | { begin
| exclude | include } regular-expression ]
240
Remarks
N/A
By default, no local asymmetric key
pairs exist.
Key pairs created with the
public-key local create command
are saved automatically and can
survive system reboots.
device."
Remarks
Available in any view.
Use at least one
command.