Destroying a local asymmetric key pair

You may need to destroy a local asymmetric key pair and generate a new pair when an intrusion event has occurred, the storage media of the device is replaced, the asymmetric key has been used for a long time, or the local certificate expires. For more information about the local certificate, see "Configuring PKI."

To destroy a local asymmetric key pair:

Step

Command

1. Enter system view.

system-view

2. Destroy a local asymmetric key pair.

public-key local destroy { dsa | ecdsa | rsa }