C
HAPTER
24
| Authentication Commands
Secure Shell
– 845 –
◆ This command stores the host key pair in memory (i.e., RAM). Use the
ip ssh save host-key command to save the host key pair to flash
memory.
◆ Some SSH client programs automatically add the public key to the
known hosts file as part of the configuration process. Otherwise, you
must manually create a known hosts file and place the host public key
in it.
◆ The SSH server uses this host key to negotiate a session key and
encryption method with the client trying to connect to it.
EXAMPLE
Console#ip ssh crypto host-key generate dsa
Console#
RELATED COMMANDS
ip ssh crypto zeroize (845)
ip ssh save host-key (846)
ip ssh
crypto zeroize
This command clears the host key from memory (i.e. RAM).
SYNTAX
ip ssh crypto zeroize [dsa | rsa]
dsa – DSA key type.
rsa – RSA key type.
DEFAULT SETTING
Clears both the DSA and RSA key.
COMMAND MODE
Privileged Exec
COMMAND USAGE
◆ This command clears the host key from volatile memory (RAM). Use
the no ip ssh save host-key command to clear the host key from flash
memory.
◆ The SSH server must be disabled before you can execute this
command.
EXAMPLE
Console#ip ssh crypto zeroize dsa
Console#
To Next Page
Loading...
