Cisco CRS-1 - Carrier Routing System Router Configuration Manual page 74

How to Implement CA Interoperability
DETAILED STEPS
Command or Action
Step 1
crypto key generate rsa [usage keys |
general-keys] [keypair-label]
Example:
RP/0/RP0/CPU0:router# crypto key generate rsa
general-keys
Step 2
crypto key zeroize rsa [keypair-label]
Example:
RP/0/RP0/CPU0:router# crypto key zeroize rsa
key1
Step 3
show crypto key mypubkey rsa
Example:
RP/0/RP0/CPU0:router# show crypto key mypubkey
rsa
Importing a Public Key to the Router
This task imports a public key to the router.
A public key is imported to the router to authenticate the user.
SUMMARY STEPS
1.
2.
Cisco IOS XR System Security Configuration Guide for the Cisco CRS-1 Router
SC-68
crypto key import authentication rsa [usage keys | general-keys] [keypair-label]
show crypto key mypubkey rsa
Implementing Certification Authority Interoperability on Cisco IOS XR Software
Purpose
Generates RSA key pairs.
Use the usage keys keyword to specify special usage
•
keys; use the general-keys keyword to specify general-
purpose RSA keys.
The keypair-label argument is the RSA key pair label
•
that names the RSA key pairs.
(Optional) Deletes all RSAs from the router.
Under certain circumstances, you may want to delete
•
all RSA keys from you router. For example, if you
believe the RSA keys were compromised in some way
and should no longer be used, you should delete the
keys.
To remove a specific RSA key pair, use the
•
keypair-label argument.
(Optional) Displays the RSA public keys for your router.
OL-20382-01