Administrator Guide

Security Commands 1084

User Guidelines

The key string is the public key of the specified type (RSA or DSA) generated

by the administrator. The administrator will need access to both the public

and private key on the host to log in without authenticating via password.

Enclose the key string in quotes.

DSA is considered less secure than RSA. Use of RSA is suggested.

Use the key-string row command to specify which SSH public key you will

configure interactively next. To complete the interactive command, you must

enter key-string row with no characters.

Examples

The following example shows how to enter a public key string for a user called

"bob."

console(config)#crypto key pubkey-chain ssh user-key bob rsa

console(config-pubkey-chain)#Key-String "ssh-rsa

AAAAB3NzaC1yc2EAAAABIwAAAQEAu7WHtjQDUygjSQXHVgyqdUby

dxUXEAiDHXcWHVr0R/ak1HDQitBzeEv1vVEToEn5ddLmRhtIgRdKUJHgBHJV

R2VaSN/WC0IK53j9re4B11AE+O3qAxwJs0KD7cTkvF9I+YdiXeOM8VE4skkw

AiyLDNVWXgNQ6iat8+8Mjth+PIo5t3HykYUCkD8B1v93nzi/sr4hHHJCdx7w

wRW3QtgXaGwYt2rdlr3x8ViAF6B7AKYd8xGVVjyJTD6TjrCRRwQHgB/BHsFr

z/Rl1SYa0vFjel/7/0qaIDSHfHqWhajYkMa4xPOtIye7oqzAOm1b76l28uTB

luBEoLQ+PKOKMiK8sQ=="

show crypto key mypubkey

Use the show crypto key mypubkey command in Privileged Exec mode to

display the SSH public keys of the switch.

Syntax

show crypto key mypubkey [rsa | dsa]

•

rsa

— RSA key.

•

dsa

— DSA key.

Default Configuration

This command has no default configuration.

2CSNXXX_SWUM204.book Page 1084 Monday, January 25, 2016 1:25 PM