Step
5.
Return to public key view.
6.
Return to system view.
Displaying public keys
Task
Display the local public keys
Display the specified or all peer
public keys on the local device.
Public key configuration examples
This section provides examples of managing public keys.
Manually specifying the peer public key on the local device
Network requirements
To prevent illegal access, Device B (the local device) authenticates Device A (the peer device) through a
digital signature as shown in
configure the public key of Device A on Device B.
Configure Device B to use the asymmetric key algorithm of RSA to authenticate Device A.
•
•
Manually specify the host public key of Device A's public key pair on Device B.
Figure 76 Network diagram
Configuration procedure
1.
Configure Device A:
# Create local RSA key pairs on Device A, setting the modulus length to the default 1024 bits.
<DeviceA> system-view
[DeviceA] public-key local create rsa
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Press CTRL+C to abort.
Input the bits of the modulus[default = 1024]:
Generating Keys...
++++++
Command
public-key-code end
peer-public-key end
Command
display public-key local { dsa | rsa } public [ | { begin
| exclude | include } regular-expression ]
display public-key peer [ brief | name
publickey-name ] [ | { begin | exclude | include }
regular-expression ]
Figure
76. Before configuring authentication parameters on Device B,
195
Remarks
When you exit public key code view, the
system automatically saves the public key.
N/A
Remarks
Available in any
view.
Available in any
view.