Configuring A Local Asymmetric Key Pair On The Local Device; Creating A Local Asymmetric Key Pair; Displaying Or Exporting The Local Host Public Key - HP A5830 Series Configuration Manual

Task
asymmetric key pair on
the local device
Specifying the peer public key on the local device
Configuring a local asymmetric key pair on the
local device

Creating a local asymmetric key pair

Configuration guidelines
When you create an asymmetric key pair on the local device, follow these guidelines:
Create an asymmetric key pair of the proper type to work with a target application.
•
After you enter the command, specify a proper modulus length for the key pair.
•
the three types of key pairs.
Table 10 A comparison between different types of asymmetric key pairs
Type
RSA
DSA
Only SSH1.5 uses the RSA server key pair.
Configuration procedure
To create a local asymmetric key pair:
To do...
1. Enter system view.
2. Create a local asymmetric key
pair.
Key pairs created with the public-key local create command are saved automatically and can survive
system reboots.

Displaying or exporting the local host public key

In SSH, to allow your local device to be authenticated by a peer device through digital signature, you
must display or export the local host public key, which is then specified on the peer device.
To display or export the local host public key, choose one of the following methods:
Displaying and recording the host public key information
•
Displaying or exporting the local host public key
Destroying a local asymmetric key pair
Number of key pairs
Two key pairs, one server key pair and
one host key pair. Each key pair
comprises a public key and a private key.
One key pair, the host key pair.
Use the command...
system-view
public-key local create { dsa | rsa
}
Modulus length
512 to 2048 bits
1024 by default
Remarks
—
Required.
By default, no asymmetric key
pair is created.
139
Remarks
Optional
Optional
Optional
Table 10 compares
Remarks
To achieve high
security, specify at least
768 bits.