SSH Commands 295
Syntax
crypto key generate rsa
Default Configuration
RSA key pairs do not exist.
Command Mode
Global Configuration mode
User Guidelines
• RSA keys are generated in pairs: one public RSA key and one private RSA key. If the device
already has RSA keys, a warning and prompt to replace the existing keys with new keys is
displayed.
• The maximum supported size for the RSA key is 2048 bits.
• This command is not saved in the startup configuration; however, the keys generated by this
command are saved in the FLASH. The SSH keys can be displayed with the
show crypto key
mypubkey rsa
command.
• This command may take a considerable period of time to execute.
Example
The following example generates RSA key pairs.
ip ssh pubkey-auth
The
ip ssh pubkey-auth
Global Configuration mode command enables public key authentication
for incoming SSH sessions. To disable this function, use the
no
form of this command.
Syntax
ip ssh pubkey-auth
no ip ssh pubkey-auth
Default Configuration
The function is disabled.
Command Mode
Global Configuration mode
User Guidelines
• There are no user guidelines for this command.
Console (config)# crypto key generate rsa
