Syntax
crypto key generate rsa
Default Configuration
RSA key pairs do not exist.
Command Mode
Global Configuration mode
User Guidelines
•
RSA keys are generated in pairs: one public RSA key and one private RSA key. If the Ethernet
Switch Module already has RSA keys, a warning and prompt to replace the existing keys with
new keys is displayed.
•
The maximum supported size for the RSA key is 2048 bits.
•
This command is not saved in the startup configuration; however, the keys generated by this
command are saved in the FLASH. The SSH keys can be displayed with the show crypto key
mypubkey rsa command.
•
This command may take up to 5 minutes to execute.
Example
The following example generates RSA key pairs.
console(config)# crypto key generate rsa
ip ssh pubkey-auth
The ip ssh pubkey-auth Global Configuration mode command enables public key authentication
for incoming SSH sessions. To disable this function, use the no form of this command.
Syntax
ip ssh pubkey-auth
no ip ssh pubkey-auth
Default Configuration
The function is disabled.
Command Mode
Global Configuration mode
User Guidelines
There are no user guidelines for this command.
267
SSH Commands