HP 6120XG HP ProCurve Series 6120 Blade Switches Access Security Guide - Page 296
To Create a Client-Public-Key Text File
View all HP 6120XG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 296 highlights
Configuring Secure Shell (SSH) Further Information on SSH Client Public-Key Authentication Bit Size To Create a Client-Public-Key Text File. These steps describe how to copy client-public-keys into the switch for challenge-response authentication, and require an understanding of how to use your SSH client application. Exponent Modulus Comment Figure 7-13. Example of a Client Public Key Notes Comments in public key files, such as [email protected] in figure 7-13, may appear in a SSH client application's generated public key. While such comments may help to distinguish one key from another, they do not pose any restriction on the use of a key by multiple clients and/or users. Public key illustrations such as the key shown in figure 7-13 usually include line breaks as a method for showing the whole key. However, in practice, line breaks in a public key will cause errors resulting in authentication failure. 1. Use your SSH client application to create a public/private key pair. Refer to the documentation provided with your SSH client application for details. The switch supports the following client-public-key properties: Property Supported Comments Value Key Format ASCII See figure 7-7 on page 7-14. The key must be one unbroken ASCII string. If you add more than one client-public-key to a file, terminate each key (except the last one) with a . Spaces are allowed within the key to delimit the key's components. Note that, unlike the use of the switch's public key in an SSH client application, the format of a client-public-key used by the switch does not include the client's IP address. Key Type RSA or DSA You can choose either RSA or DSA key types when using the crypto key generate ssh command. The cert and autorun parameters only use RSA key types. Maximum Supported 3072 bits Shorter key lengths allow faster operation, but also mean diminished security. Public Key Length Maximum Host Key Sizes In Bits RSA: 1024, 2048, 3072 DSA: 1024 Includes the bit size, public index, modulus, any comments, , , and all blank spaces. If necessary, you can use an editor application to verify the size of a key. For example, placing a client-public-key into a Word for Windows text file and clicking on File | Properties | Statistics, lets you view the number of characters in the file, including spaces. 7-26