[x]

Configuring the device as an SCP client > Generating local key pairs

 

 Next

Generating local key pairs

About generating local key pairs

You must generate local key pairs on SCP clients when the SCP server uses the publickey, password-publickey, or any authentication method.

Restrictions and guidelines

Local DSA, ECDSA, and RSA key pairs for SSH use default names. You cannot assign names to the key pairs.

The key modulus length must be less than 2048 bits when you generate a DSA key pair.

When you generate an ECDSA key pair, you can generate only a secp256r1 or secp384r1 ECDSA key pair.

The SCP client operating in FIPS mode supports only ECDSA and RSA key pairs.

Procedure

  1. Enter system view.

    system-view

  2. Generate local key pairs.

    public-key local create { dsa | ecdsa { secp256r1 | secp384r1 } | rsa }

prev

 

up

 next

SCP client tasks at a glance 

home

 Specifying the source IP address for outgoing SCP packets

© Copyright 2017 Hewlett Packard Enterprise Development LP