Rsakeypair - Cisco Nexus 7000 Series Command Reference Manual

rsakeypair

rsakeypair
To configure and associate the RSA key pair details to a trustpoint, use the rsakeypair command. To
disassociate the RSA key pair from the trustpoint, use the no form of this command.
rsakeypair key-pair-label [key-pair-size]
no rsakeypair key-pair-label [key-pair-size]
Syntax Description
key-pair-label
key-pair-size
Command Default
The default key pair size is 512 if the key pair is not already generated.
Command Modes
Trustpoint configuration
Command History
Release
4.1(2)
Usage Guidelines
You can associate only one RSA key pair with a trustpoint CA, even though you can associate the same key
pair with many trustpoint CAs. This association must occur before you enroll with the CA to obtain an identity
certificate. If the key pair was previously generated (using the crypto key generate command), then the key
pair size, if specified, should be the same size as that was used during the generation. If the specified key pair
is not yet generated, you can enter the crypto ca enroll command to generated the RSA key pair during the
enrollment.
The no form of the rsakeypair command disassociates the key pair from the trustpoint. Before you enter
Note
the no rsakeypair command, first remove the identity certificate, if present, from the trustpoint CA to
ensure that the association between the identity certificate and the key pair for a trustpoint is consistent.
This command does not require a license.
Cisco Nexus 7000 Series Security Command Reference
634
Name for the RSA key pair. The name is
alphanumeric, case sensitive, and has a maximum of
64 characters.
(Optional) Size for the RSA key pair. The size values
are 512, 768, 1024, 1536, and 2048 bits.
Modification
This command was introduced.
R Commands