SSH2 client

“Exporting client public keys” on page 79

Generating and deleting a client DSA key pair

To generate a client DSA key pair, enter the following command.

Brocade(config)# crypto key client generate dsa

To delete the DSA host key pair, enter the following command.

Brocade(config)# crypto key client zeroize dsa

Syntax: crypto key client generate zeroize dsa

The generate keyword places a host key pair in the flash memory.

The zeroize keyword deletes the host key pair from the flash memory.

The dsa keyword specifies a DSA host key pair.

Generating and deleting a client RSA key pair

To generate a client RSA key pair, enter a command such as the following:

Brocade(config)# crypto key client generate rsa modulus 2048

To delete the RSA host key pair, enter the following command.

Brocade(config)# crypto key client zeroize rsa

Syntax: crypto key client generate zeroize rsa [modulus modulus-size]

The generate keyword places an RSA host key pair in the flash memory. The zeroize keyword deletes the RSA host key pair from the flash memory.

The optional [modulus modulus-size] parameter specifies the modulus size of the RSA key pair, in bits. The valid values for modulus-sizeare 1024 or 2048. It is used only with the generate parameter. The default value is 1024.

The rsa keyword specifies an RSA host key pair.

Exporting client public keys

Client public keys are stored in the following files in flash memory:

A DSA key is stored in the file $$sshdsapub.key.

An RSA key is stored in the file $$sshrsapub.key.

To copy key files to a TFTP server, you can use the copy flash tftp command.

You must copy the public key to the SSH server. If the SSH server is a brocade device, see the section “Importing authorized public keys into the Brocade device” on page 68.

Using SSH2 client

To start an SSH2 client connection to an SSH2 server using password authentication, enter a command such as the following:

Brocade ICX 6650 Security Configuration Guide

79

53-1002601-01

 

Page 99
Image 99
Brocade Communications Systems 6650 manual Using SSH2 client, Generating and deleting a client DSA key pair