Crypto key generate hostkey – Allied Telesis AT-DC2552XS User Manual
Page 40
Chapter 2: Management Session Commands
40
CRYPTO KEY GENERATE HOSTKEY
Syntax
crypto key generate hostkey dsa|rsa|rsa1 [
key_length
]
Parameters
dsa
Creates a DSA key pair in SSH protocol version 2.
rsa
Creates an RSA key pair in SSH protocol version 2.
rsa1
Creates an RSA1 key pair in SSH protocol version 1.
key_length
Specifies the length of the encryption key, in bits, for the RSA key.
This parameter is valid only when you specify the RSA key. The
range is 768 to 2,048 bits. If you do not specify this parameter for
the RSA key, the key length of the RSA key is 1024 bits. The DSA
and RSA1 keys have fixed lengths of 1024 bits.
Mode
Global Configuration mode
Confirmation Command
“SHOW CRYPTO KEY HOSTKEY” on page 62
Description
Use this command to create or update an encryption key pair for the SSH
server. You must create at least one encryption key pair before enabling
the sever. The switch can have one key pair of each type, DSA, RSA, and
RSA1, at the same time.
If you create a new key when the switch already has a key of that type, the
new key overwrites the old key. For example, if you create a new RSA key
when the switch already has an RSA key, the new key replaces the
existing key.
When the switch does not have an RSA1 key pair for SSH protocol
version 1, you cannot connect to the switch in SSH protocol version 1.
Similarly, when the switch does not have either a DSA or RSA key pair for
SSH protocol version 2, you cannot connect to the switch in SSH protocol
version 2.