cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1659
Views
0
Helpful
5
Replies

Crypto Key Generation

swesley2008
Level 1
Level 1

Setting up a new 3750-X, do not want a crypto rsa keys configured. I do have ip http secure-server enabled and I believe this is whats causing these to keep generating.

I deleted the crypto pki trustpoint & certificate. I also did a 'crypto key zeroize rsa TP-self-signed'

I reload the switch and the keys are generated again. How do I disable these?

1 Accepted Solution

Accepted Solutions

glen.grant
VIP Alumni
VIP Alumni

   If you have  https configured that is what is generating that key info you are seeing in the config .  The only way to get rid of it is to shut off http secure server  and reload the switch.

View solution in original post

5 Replies 5

Latchum Naidu
VIP Alumni
VIP Alumni

Hi,

You can use the ‘crypto key zeroize rsa’ command.


ITKE-AS1(config)#crypto key zeroize rsa
% All RSA keys will be removed.
% All router certs issued using these keys will
will also be removed.

Do you really want to remove these keys? [yes/no]: yes

Please click on the correct answer if this answered you question.
Regards,
Naidu.

Yes I did that, and it was added again after reload.

That is what I did when I face the same proble.
So in your case you may need to upgrade your IOS as it seems like IOS bug with your current version.

Please click on the correct answer if this answered you question.
Regards,
Naidu.

glen.grant
VIP Alumni
VIP Alumni

   If you have  https configured that is what is generating that key info you are seeing in the config .  The only way to get rid of it is to shut off http secure server  and reload the switch.

Yeah thats what I ended up doing. Just disabling http secure-server, we don't need it anyway. Thanks!

Review Cisco Networking for a $25 gift card