Specifying the peer public key on the local device

Import the public key from a public key file (recommended).

1. Save the host public key of the intended asymmetric key pair in a file.

2. Transfer a copy of the file through FTP or TFTP in binary mode to the local device.

During the import process, the system automatically converts the public key to a string in Public Key Cryptography Standards (PKCS) format.

Manually configure the public key—enter or copy the key data.

• Display and record the public key of the intended asymmetric key pair.

• If the peer device is an HPE device, use the display public-key local public command to view and record its public key. A public key displayed by other methods for the HPE device might not be in a correct format.

• The recorded public key must be in the correct format. Otherwise, the manual configuration of a format-incompliant public key will fail.

• Always use the first method if you are not sure about the format of the recorded public key.

1. Enter system view.

system-view

2. Import the host public key from the public key file.

public-key peer keyname import sshkey filename

1. Enter system view.

system-view

N/A

2. Specify a name for the public key and enter public key view.

public-key peer keyname

N/A

3. Enter public key code view.

public-key-code begin

N/A

4. Configure the peer public key.

Enter or copy the key

Spaces and carriage returns are allowed between characters, but are not saved.

5. Return to public key view.

public-key-code end

When you exit public key code view, the system automatically saves the public key.

6. Return to system view.

peer-public-key end

N/A