crypto key generate rsa
To generate a Rivest, Shamir, and Adelman (RSA) key pair, use the crypto key generate rsa command.
crypto key generate rsa [usage-keys| general-keys] [ keypair-label ]
Syntax Description
(Optional) Generates separate RSA key pairs for signing and encryption.usage-keys
(Optional) Generates a general-purpose RSA key pair for signing and
encryption.
general-keys
(Optional) RSA key pair label that names the RSA key pairs.
keypair-label
Command Default
RSA key pairs do not exist. If the usage-keys keyword is not used, general-purpose keys are generated. If no
RSA label is specified, the key is generated as the default RSA key.
Command Modes
EXEC
Command History
ModificationRelease
This command was introduced.Release 2.0
Usage Guidelines
Use the crypto key generate rsa command to generate RSA key pairs for your router.
RSA keys are generated in pairs—one public RSA key and one private RSA key.
If your router already has RSA keys when you issue this command, you are warned and prompted to replace
the existing keys with new keys. The keys generated by this command are saved in the secure NVRAM (which
is not displayed to the user or backed up to another device).
To remove an RSA key, use the crypto key zeroize rsa command.
Task ID
OperationsTask ID
executecrypto
Examples
The following example shows how to generate an RSA key pair:
RP/0/RP0/CPU0:router# crypto key generate rsa
Cisco IOS XR System Security Command Reference for the Cisco CRS Router, Release 4.1
OL-24740-01 199
Public Key Infrastructure Commands
crypto key generate rsa
To Next Page
Loading...
Need help?
General
