User’s Manual of WGSD-1022/WGSD-8000

User Guidelines

RSA keys are generated in pairs: one public RSA key and one private RSA key. If the device already has RSA keys, a warning and prompt to replace the existing keys with new keys is displayed.

The maximum supported size for the RSA key is 2048 bits.

This command is not saved in the startup configuration; however, the keys generated by this command are saved in the running configuration, which is never displayed to the user or backed up to another device.

This command may take a considerable period of time to execute.

Example

The following example generates RSA key pairs.

Console (config)# crypto key generate rsa

5.22.5 ip ssh pubkey-auth

The ip ssh pubkey-authglobal configuration command enables public key authentication for incoming SSH sessions. To disable this function, use the no form of this command.

Syntax

ip ssh pubkey-auth

no ip ssh pubkey-auth

Default Configuration

The function is disabled.

Command Mode

Global Configuration mode

User Guidelines

AAA authentication is independent.

Example

The following example enables public key authentication for incoming SSH sessions.

Console (config)# ip ssh pubkey-auth

5.22.6 crypto key pubkey-chain ssh

The crypto key pubkey-chain ssh global configuration command enters SSH Public Key-chain configuration mode. The mode is used to manually specify other device public keys such as SSH client public keys.

- 308 –