Configuration task list, Displaying and maintaining public keys, Examples of public key management – H3C Technologies H3C S12500-X Series Switches User Manual

123

91B

Displaying and maintaining public keys

Execute display commands in any view.

Task Command

Display local public keys.

display public-key local { dsa | ecdsa | rsa } public [ name
key-name ]

Display peer public keys.

display public-key peer [ brief | name publickey-name ] [ name
key-name ]

92B

Examples of public key management

229B

Example for entering a peer public key

454B

Network requirements

As shown in

831H

Figure 38

, to prevent illegal access, Device B authenticates Device A through a digital

signature. Before configuring authentication parameters on Device B, configure the public key of Device

A on Device B.

•

Configure Device B to use the asymmetric key algorithm of RSA to authenticate Device A.

•

Manually specify the host public key of Device A on Device B.

Figure 38 Network diagram

455B

Configuration procedure

1.

Configure Device A:
# Create local RSA key pairs with default names on Device A, and use the default modulus length
1024 bits.

system-view

[DeviceA] public-key local create rsa

The range of public key modulus is (512 ~ 2048).

If the key modulus is greater than 512, it will take a few minutes.

Press CTRL+C to abort.

Input the modulus length [default = 1024]:

Generating Keys...

.................++++++

......................................++++++

.....++++++++

..............++++++++

Create the key pair successfully.

# Display all local RSA public keys.

[DeviceA] display public-key local rsa public

Device A

Device B