R3102-R3103-HP 6600/HSR6600 Routers Security Command Reference
244
Usage guidelines
To manually configure the peer public key on the local device, obtain the public key in hexadecimal from
the peer device beforehand, and perform the following configurations on the local device:
1. Execute the public-key peer command, and then the public-key-code begin command to enter
public key code view.
2. Type the peer public key.
3. Execute the public-key-code end command to save the public key and return to public key view.
4. Execute the peer-public-key end command to return to system view.
Examples
# Specify the name for the peer public key as key1 and enter public key view.
<Sysname> system-view
[Sysname] public-key peer key1
[Sysname-pkey-public-key]
Related commands
• public-key-code begin
• public-key-code end
• peer-public-key end
• display public-key peer
public-key peer import sshkey
Use public-key peer import sshkey to import a peer host public key from the public key file.
Use undo public-key peer to remove the specified peer host public key.
Syntax
public-key peer keyname import sshkey filename
undo public-key peer keyname
Views
System view
Default command level
2: System level
Parameters
keyname: Specifies a public key name, a case-sensitive string of 1 to 64 characters.
filename: Specifies the name of the file that saves the peer host public key. For more information about
file name, see Fundamentals Configuration Guide.
Usage guidelines
After execution of this command, the system automatically transforms the peer host public key to the PKCS
format, and imports the key. This operation requires that you get a copy of the public key file from the
peer device through FTP or TFTP in binary mode in advance.
The device supports importing public keys in the format of SSH1.5, SSH2.0, and OpenSSH.