Administrator Guide
Security Commands 1083
console(config)#ip ssh protocol 2
console(config)#line ssh
console(config-ssh)#exit
console(config)#crypto key pubkey-chain ssh user-key admin rsa
console(config-pubkey-key)#Key-String "ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAvChaxFl4sMoWMZAAwtx/pcVb1jY6moer3CT231M47dgZDPFJ
1qf7/fuDwmES72FmIJAqq8cTUfT55BrI0r3vk05QJu0nnhcNjW6c98mNL9wxfx7TWybySs3zJJpS
NhcZ9JM+OJ104n4oS4izIzY7NSSNa+LQgq5j0mw9jdITY8SicImenLCjluILrpi6YA9WtC9RHGpi
xLzIRFQ/Kmf5SWcXiSRft4gUJP7Xp69SF3VAAuoUFQove5RMr6paLXUiZfwzDkHA8F4WHaDyHCtx
ESLXnZuQQjCiowll8Q2Nq5YXnu/ZEUJTyof1Uc8S13aP2rr+6NdzbN6khBmSSgQnVw==
jmclendo@xl-rtp-02"
console(config-pubkey-key)#exit
The Key-String above is the contents of the ~/.ssh/id_rsa.pub file enclosed in
quotes. This file was generated by the ssh-keygen command as shown above.
Also, ensure that the private key ~/.ssh/id_rsa is not readable by others by
executing the chmod 0600 ~/.ssh/id_rsa command. Authentication will fail if
the file is readable.
The command string to log into the switch (substituting the correct IP
address) from your linux account is:
ssh -2 -i ~/.ssh/id_rsa -F ~/.ssh/ssh_config 10.27.21.70
key-string
Use the key-string SSH Public Key Configuration mode to specify an SSH
public key manually.
Syntax
key-string
key-string
key-string row
key-string
•
row
— To specify the SSH public key row by row.
•
key-string
— The UU-encoded DER format is the same format as the
authorized keys file used by OpenSSH.
Default Configuration
By default, the key-string is empty.
Command Mode
SSH Public Key Configuration mode
2CSNXXX_SWUM204.book Page 1083 Monday, January 25, 2016 1:25 PM