cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
820
Views
0
Helpful
1
Replies

RSA Crypto Key pairs

Pradeep H A
Beginner
Beginner

Hi,

I found this on our router:

Router#show crypto key mypubkey rsa

% Key pair was generated at: 13:52:01 GMT Oct 9 2010

Key name: Router

Storage Device: private-config

Usage: General Purpose Key

Key is not exportable.

Key Data:

<blah blah>

% Key pair was generated at: 17:50:29 GMT Nov 1 2012

Key name: Router.server

Temporary key

Usage: Encryption Key

Key is not exportable.

Key Data:

<blah blah>

% Key pair was generated at: 17:54:08 GMT Nov 1 2012

Key name: Router

Storage Device: not specified

Usage: General Purpose Key

Key is not exportable.

Key Data:

<blah blah>

My question:

1. I found no statement in configuration that explicitly configures the router for using RSA. any specific reason why Cisco router uses RSA keys & not DH keys by default? can I configure it to use DH keys?

2. When I enter crypto key generate rsa command it generates 2 pairs of keys! Why 2 pairs? isnt 1 pair enough?

3. If I enter crypto key generate rsa command again 1 more pair will be generated. Which one the router will use for SSH?

1 Reply 1

Pradeep H A
Beginner
Beginner

Why No reply from anyone?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: