Deleting encryption keys 4, Deleting encryption keys – Allied Telesis AT-FS970M Series User Manual

Chapter 88: Secure Shell (SSH) Server

1404

Deleting Encryption Keys

To delete encryption keys from the switch, use the CRYPTO KEY
DESTROY HOSTKEY command in the Global Configuration mode. Here
is the format of the command:

crypto key destroy hostkey dsa|rsa|rsa1

Note

You should disable the SSH server before deleting the encryption
key. The operations of the server will be impaired if you delete the
active key when the server is enabled.

Note

If you disable the server during a remote SSH management session,
your session ends. To resume managing the unit with the manager
account, you must wait for the console timer on the switch to expire
and then establish a local management session or remote Telnet or
web browser session.

This example deletes the DSA key:

awplus> enable
awplus# configure terminal
awplus(config)# no service ssh
awplus(config)# crypto key destroy hostkey dsa

This example deletes the RSA key:

awplus> enable
awplus# configure terminal
awplus(config)# no service ssh
awplus(config)# crypto key destroy hostkey rsa

This example deletes the RSA1 key:

awplus> enable
awplus# configure terminal
awplus(config)# no service ssh
awplus(config)# crypto key destroy hostkey rsa1