Description, Syntax 1 description – Allied Telesis AT-S63 User Manual
Page 499
AT-S63 Management Software Command Line Interface User’s Guide
499
ssh
Specifies a format for Secure Shell
version 1 users.
ssh2
Specifies a format for Secure Shell
version 2 users.
Description
This command serves two functions. One is to create encryption keys. The
other is to import and export public encryption keys from the AT-S63 file
system to the key database.
Caution
Key generation is a CPU-intensive process. Because this process
may affect switch behavior, Allied Telesyn recommends creating
keys when the switch is not connected to a network or during
periods of low network activity.
Syntax 1 Description
Syntax 1 creates encryption key pairs. It creates both the public and
private keys of a key pair. A new key pair is automatically stored in the key
database and the file system. To view the current keys on a switch, use
the “SHOW ENCO” on page 504.
The KEY parameter specifies the identification number for the key. The
number must be unique from all other key pairs already on the switch. The
range is 0 to 65,535. This number is used only for identification purposes
and not in generating the actual encryption key pair.
The TYPE parameter specifies the type of key to be created. The only
option is RSA.
The LENGTH parameter specifies the length of the key in bits. The range
is 512 to 1,536 bits, in increments of 256 bits (for example, 512, 768, 1024,
etc). Before selecting a key length, note the following
For SSL and web browser encryption, key length can be any valid
value within the range.
For SSH host and server key pairs, the two key pairs must be created
separately and be of different lengths of at least one increment (256
bits) apart. The recommended length for the server key is 768 bits and
the recommended length for the host key is 1024 bits.
The DESCRIPTION parameter is optional. You can use it to add a
description to the key. This can help you identify the different keys on the
switch. The description can be up to forty alphanumeric characters. It must
be enclosed in quotes and spaces are allowed.