CLI Guide

Table Of Contents
Security Commands 1190
Default Configuration
By default, this command has no public keys configured.
Command Mode
Global Configuration mode
User Guidelines
This public key is used to authenticate an administrator to the switch when
using SSH. This avoids the need for the administrator to enter a password on
every login.
Enclose the key string is quotes. The Key String is the contents of the public
key in uu-encoded format.
Example
The following example configures a public key for administrator bob, enables
the SSH server, and enables public key authentication over SSH.
console#configure
console(config)#crypto key generate rsa
console(config)#crypto key generate dsa
console(config)#crypto key pubkey-chain ssh user-key bob rsa
Key-string row AAAAB3NzaC1yc2EAAAABIwAAAQEAu7WHtjQDUygjSQXHVgyqdUby
Key-string row dxUXEAiDHXcWHVr0R/ak1HDQitBzeEv1vVEToEn5ddLmRhtIgRdKUJHgBHJV
Key-string row R2VaSN/WC0IK53j9re4B11AE+O3qAxwJs0KD7cTkvF9I+YdiXeOM8VE4skkw
Key-string row AiyLDNVWXgNQ6iat8+8Mjth+PIo5t3HykYUCkD8B1v93nzi/sr4hHHJCdx7w
Key-string row wRW3QtgXaGwYt2rdlr3x8ViAF6B7AKYd8xGVVjyJTD6TjrCRRwQHgB/BHsFr
Key-string row z/Rl1SYa0vFjel/7/0qaIDSHfHqWhajYkMa4xPOtIye7oqzAOm1b76l28uTB
Key-string row luBEoLQ+PKOKMiK8sQ==
console(config-pubkey-key)#exit
console(config)#ip ssh server
console(config)#ip ssh pubkey-auth
crypto key zeroize pubkey-chain
Use the crypto key zeroize pubkey-chain command in Global Configuration
mode to erase all SSH server public key chains or the public key chain for a
user.