Two-factor authentication validation rules

Validation	Error/Warning/Prompt
If the authentication method is being set to two-factor authentication, various messages display.	If both the public key and username/password are not configured: Public key and username/password should be configured for a successful two-factor authentication. If public key is configured and username is not configured: Username and password should be configured for a successful two-factor authentication. If the username is configured and public key is not configured: Public key should be configured for a successful two-factor authentication. If "ssh-server" certificate is not installed at the time of enabling certificate-password authentication: The "ssh-server" certificate should be installed for a successful two-factor authentication.
If the authentication method is set to two-factor while installing the public key, a message displays.	The client public keys without username will not be considered for the two-factor authentication for the SSH session.
If the username and the key installation user for that privilege do not match, a message displays and installation is not allowed. This will also happen when the authentication method is set for two-factor.	The username in the key being installed does not match the username configured on the switch.
If secondary authentication type for two-factor authentication chosen is not none, a message displays.	Not legal combination of authentication methods.
If the authentication method is anything other than two-factor and the two-factor authentication method options are set, a message displays.	Not legal combination of authentication methods.
If two-factor authentication is set and user tries to SSH into another system using `ssh <IP \| HOSTNAME>` command, a message displays.	SSH client is not supported when the two-factor authentication is enabled.
When RSA secure key is configured.	** CAUTION ** Enabling secure RSA key feature will only allow generation of 2048 bits or higher bit as 1024 bits or lower bit are deprecated. Continue (y/n)?