HP 6125G HP 6125G & 6125G/XG Blade Switches Security Configuration Gui - Page 158
Creating a local asymmetric key pair, Displaying or exporting the local host public key
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 158 highlights
Task Configuring a local asymmetric key pair on the local device Creating a local asymmetric key pair Displaying or exporting the local host public key Destroying a local asymmetric key pair Specifying the peer public key on the local device Remarks Perform the tasks as needed. Creating a local asymmetric key pair When you create an asymmetric key pair on the local device, follow these guidelines: • Create an asymmetric key pair of the proper type to work with a target application. • After you enter the command, specify a proper modulus length for the key pair. The following table compares the three types of key pairs. Table 10 A comparison between different types of asymmetric key pairs Type RSA DSA Number of key pairs Modulus length Two key pairs, one server key pair and one host key par. Each key pair comprises a public key and a private key One key pair, the host key pair 512 to 2048 bits 1024 by default Remarks To achieve high security, specify at least 768 bits. IMPORTANT: Only SSH1.5 uses the RSA server key pair. To create a local asymmetric key pair: Step Command Remarks 1. Enter system view. system-view N/A By default, no asymmetric key pair is created. 2. Create a local asymmetric key pair. public-key local create { dsa | rsa } Key pairs created with the public-key local create command are saved automatically and can survive system reboots. Displaying or exporting the local host public key In some applications, such as SSH, to allow your local device to be authenticated by a peer device through digital signature, you must display or export the local host public key, which will then be specified on the peer device. To display or export the local host public key, choose one of the following methods: • Displaying and recording the host public key information • Displaying the host public key in a specific format and saving it to a file • Exporting the host public key in a specific format to a file 148