Allied Telesis AT-S62 User Manual

AT-S62 Command Line User’s Guide

509

hex

Specifies a hexadecimal format
used to transfer a key between
devices other than switches. This is
the default.

ssh

Specifies a format for Secure Shell
version 1 users.

ssh2

Specifies a format for Secure Shell
version 2 users.

Description

This command serves two functions. One is to create encryption keys.
The other is to import and export public encryption keys from the
AT-S62 file system to the key database.

Caution

Key generation is a CPU-intensive process. Because this process
may affect switch behavior, Allied Telesyn recommends creating
keys when the switch is not connected to a network or during
periods of low network activity.

Syntax 1 Description

Syntax 1 creates encryption key pairs. It creates both the public and
private keys of a key pair. A new key pair is automatically stored in the
key database and the file system. To view the current keys on a switch,
use the SHOW ENCO on page 514.

The KEY parameter specifies the identification number for the key. The
number must be unique from all other key pairs already on the switch.
The range is 0 to 65,535. This number is used only for identification
purposes and not in generating the actual encryption key pair.

The TYPE parameter specifies the type of key to be created. The only
option is RSA.

The LENGTH parameter specifies the length of the key in bits. The range
is 512 to 1,536 bits, in increments of 256 bits (for example, 512, 768,
1024, etc). Before selecting a key length, note the following:

❑ For SSL and web browser encryption, key length can be any valid

value within the range.

❑ For SSH host and server key pairs, the two key pairs must be

created separately and be of different lengths of at least one
increment (256 bits) apart. The recommended length for the