Main Command: ip ssh pubkey-chain
[1]
Configuration Example in Linux:
1. Generate your key if you do not have already one: ssh-keygen
Sep 19, 2019 Example 2-12 configures a router named Massimo for Cisco IOS SSH. In particular, the command crypto key generate rsa generates the RSA public key, the ip ssh time-out 120 command sets the default idle time to 120, and the ip ssh authentication-retries 2 command sets a. Dec 26, 2013 so it looks as if there is no point in the 'crypto key generate rsa' command if i follow it up with the 'crypto key generate rsa usage-keys label sshkeys mod 1024' command, i just wanted to make sure the first wasn't need for the second to work or something screwy like that. Aug 22, 2013 myswitch(config)# crypto key generate rsa The name for the keys will be: myswitch.thegeekstuff.com Choose the size of the key modulus in the range of 360 to 2048 for your General Purpose Keys. Choosing a key modulus greater than 512 may take a few minutes. How to create self-signed certificates An article by Fabio Semperboni Tutorial A digital certificate or identity certificate is an electronic document which uses a digital signature to bind a public key with an identity, information such as the name of a person or an organization, their address, and so forth.
2. Split your key in 72 characters lines: fold -b -w 72 ~/.ssh/id_rsa.pub
and copy output removing ssh-rsa and last part: username@hostname
3. Configure switch/router
View config:
Cisco Ios Generate Rsa Keys
Posible errors:%SSH: Failed to decode the Key Value
. Make sure you split your key on multiple lines with fold
command
Related Activities[edit]
- Cisco IOS/Associate a user with default higher privileges using
username
command
See also[edit]
- CompTIA IT Security/Access Control/Authentication and Authorization
ssh-keygen