Creating a local asymmetric key pair
When you create an asymmetric key pair, follow these guidelines:
The key algorithm must be the same as required by the security application.
Enter an appropriate key modulus length at prompt (Table 13). The longer the key modulus length, the higher the security, the longer the key generation time.
The created key pairs are automatically saved and can survive system reboots.
Table 13: A comparison of different types of asymmetric key algorithms
Type | Number of key pairs | Modulus length |
---|---|---|
RSA |
|
|
DSA | One host key pair. |
|
ECDSA | One host key pair. |
|
To create a local asymmetric key pair:
Step | Command | Remarks |
---|---|---|
1. Enter system view. | system-view | N/A |
2. Create a local asymmetric key pair. |
| By default, no asymmetric key pair is created. |