SSH Reference Manual

ManualsBrandsHP ManualsServerHP NonStop G-Series

191

192

193

194

195

196

197

198

199

200

• DD Mon YYYY

• DDMonYY

The second format requires surrounding quotes because it contains a comma (commas are separators in SSHCOM).

TYPE

Specifies the type of the key to be generated. Users can choose from RSA and DSA.

BITS

Optional attribute to set the key length. If this attribute is omitted, the generated key will have a default length of 1024

bits. Allowed values are 1024 and 2048 bits only.

COMMENT

This optional attribute is used to associate additional textual information with the generated key.

LIVE-DATE

This optional attribute is used to set the LIVE-DATE (not-valid-before date) for the key. This attribute can only be set if

the life-cycle policy for User Private Keys is enabled (determined by SSH2 parameter

LIFECYCLEPOLICYPRIVATEUSERKEY). If SSH2 parameter LIFECYCLEPOLICYPRIVATEUSERKEY is set to

FIXED, then field LIVE-DATE can be modified by the SUPER.SUPER user only (unless explicitly denied in

OBJECTTYPE USER record) or those configured with full SSHCOM access. In case the SSH2 parameter

LIFECYCLEPOLICYPRIVATEUSERKEY is set to VARIABLE, then every user can change field LIVE-DATE for

those keys the user owns.

EXPIRE-DATE

This optional attribute is used to set the EXPIRE-DATE (not-valid-after date) for the key. This attribute can only be set

if the life-cycle policy for User Private Keys is enabled (determined by SSH2 parameter

LIFECYCLEPOLICYPRIVATEUSERKEY). If SSH2 parameter LIFECYCLEPOLICYPRIVATEUSERKEY is set to

FIXED, then field EXPIRE-DATE can be modified by the SUPER.SUPER user only (unless explicitly denied in

OBJECTTYPE USER record) or those configured with full SSHCOM access. In case the SSH2 parameter

LIFECYCLEPOLICYPRIVATEUSERKEY is set to VARIABLE, then every user can change field EXPIRE-DATE for

those keys the user owns.

IMPORT KEY

This command imports a private/public key pair from a file into the SSH2 key store. It has the following syntax:

IMPORT KEY [<system-user-name>:]<key-name>

, FILE <filename>

[, PASSPHRASE "<passphrase>" ]

[, COMMENT "<comment>"]

[, LIVE-DATE <date-time>]

[, EXPIRE-DATE <date-time>]

The individual attributes have the following meaning and syntax:

<system-user-name>

A valid GUARDIAN user who owns the key in the SSH key store. If <system-user-name> is omitted, either the user

being set in a previously issued ASSUME USER command or the issuer of the ALTER KEY command will be used as

the default. If <system-user-name> is specified, it MUST be followed by a ':' to separate it from the key name.

<key-name>

The name of the key owned by the current user. Multiple owners can have keys with same name.

FILE

HP NonStop SSH Reference Manual SSHCOM Command Reference • 195