Public Key Configuration Examples; Manually Specifying The Peer Public Key On The Local Device - H3C S5500-EI Series Security Configuration Manual

Task
Display the local public keys.
Display the specified or all peer
public keys on the local device.

Public key configuration examples

Unless otherwise noted, devices in the configuration examples are operating in non-FIPS mode.

Manually specifying the peer public key on the local device

Network requirements
As shown in
peer device) through a digital signature. Before configuring authentication parameters on Device B,
configure the public key of Device A on Device B.
Configure Device B to use the asymmetric key algorithm of RSA.
•
Manually specify the host public key of Device A's public key pair on Device B.
•
Figure 92 Network diagram
Configuration procedure
Configure Device A;
1.
# Create local RSA key pairs on Device A, setting the modulus length to the default, 1024 bits.
<DeviceA> system-view
[DeviceA] public-key local create rsa
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Press CTRL+C to abort.
Input the bits of the modulus[default = 1024]:
Generating Keys...
++++++
++++++
++++++++
++++++++
# Display the public keys of the local RSA key pairs.
[DeviceA] display public-key local rsa public
=====================================================
Figure 92, to prevent illegal access, Device B (the local device) authenticates Device A (the
Command
display public-key local { dsa | rsa } public
[ | { begin | exclude | include }
regular-expression ]
display public-key peer [ brief | name
publickey-name ] [ | { begin | exclude |
include } regular-expression ]
254
Remarks
Available in any view
Available in any view