key-octet-string
To configure the text for a MACsec key, use the key-octet-string command. To remove the text, use the no
form of this command.
key-octet-string [0 | 7] key-octet-string cryptographic-algorithm {AES_128_CMAC | AES_256_CMAC}
no key-octet-string [0 | 7] key-octet-string cryptographic-algorithm {AES_128_CMAC | AES_256_CMAC}
Syntax Description
(Optional) Specifies the type of encryption to use.
The key-octet-string argument that you enter is
unencrypted text.
0
(Optional) Specifies the type of encryption to use.
The key-octet-string argument that you enter is
encrypted. The encryption method is a
Cisco-proprietary method. This option is useful when
you are entering a text string based on the encrypted
output of the show key chain command that you run
on another Cisco NX-OS device.
7
Text of the key octet string. The text is alphanumeric,
case sensitive, and can have up to 64 characters.
The text can have up to 130 characters for
encryption type 7.
Note
key-octet-string
Specifies the Cipher-based Message Authentication
Code (CMAC) algorithm for authentication.
cryptographic-algorithm
Configures the 128-bit AES encryption algorithm.AES_128_CMAC
Configures the 256-bit AES encryption algorithm.AES_256_CMAC
Command Default
The key octet string is not encrypted.
Command Modes
MACsec key configuration (config-macseckeychain-macseckey)
Command History
ModificationRelease
This command was introduced.8.2(1)
Cisco Nexus 7000 Series Security Command Reference
472
K Commands
key-octet-string
To Next Page
Loading...
