Solved: Several reasons why off the

F Martinez · ‎07-20-2016

Hello,

Do you have any idea why we would regenerate the rsa key? And what would happen if we do regenerate it?

Thank you!

Marvin Rhoads · ‎07-20-2016

Several reasons why off the top of my head:

1. The original key was compromised.

2. The original key was created with a short length and you wish to better secure the device (e.g. move from 1024-bit to 2048-bit).

3. The original key was non-exportable and you wish to create an exportable key.

4. You wish to have a name for your key that makes sense to you.

The impact is that anything connecting securely would need to accept the new key. Most things will do this automatically but some may not. Depends on your environment.

View solution in original post

Marvin Rhoads · ‎07-21-2016

No worry on that account - it's not like changing AAA settings.

Worst case is the next time you login you will have to accept the new RSA key.

View solution in original post

Marvin Rhoads · ‎07-20-2016

Several reasons why off the top of my head:

1. The original key was compromised.

2. The original key was created with a short length and you wish to better secure the device (e.g. move from 1024-bit to 2048-bit).

3. The original key was non-exportable and you wish to create an exportable key.

4. You wish to have a name for your key that makes sense to you.

The impact is that anything connecting securely would need to accept the new key. Most things will do this automatically but some may not. Depends on your environment.

F Martinez · ‎07-21-2016

I'm trying to regenerate it on a router that is in production and I'm worried about getting myself kicked out of the router.

Marvin Rhoads · ‎07-21-2016

No worry on that account - it's not like changing AAA settings.

Worst case is the next time you login you will have to accept the new RSA key.

F Martinez · ‎07-21-2016

Thanks Marvin!

Marvin Rhoads · ‎07-21-2016

You're welcome. Thanks for rating.

Regenerate the RSA KEY