Difference between revisions of "Ssh-keygen (command)"
Jump to navigation
Jump to search
↑ http://man7.org/linux/man-pages/man1/ssh-keygen.1.html
↑ https://www.openssh.com/txt/release-8.1
(Created page with "<code>ssh-keygen</code><ref>http://man7.org/linux/man-pages/man1/ssh-keygen.1.html</ref> is an OpenSSH software command used to generate, manage, and convert authenticat...") |
|||
| Line 13: | Line 13: | ||
Both solutions have security implications. | Both solutions have security implications. | ||
# Understand different key types: dsa, ecdsa, ed25519 and [[rsa]] | # Understand different key types: dsa, ecdsa, ed25519 and [[rsa]] | ||
| + | |||
| + | Related commands: <code>[[ssh-copy-id]]</code> | ||
== See also == | == See also == | ||
Revision as of 10:36, 28 December 2019
ssh-keygen[1] is an OpenSSH software command used to generate, manage, and convert authentication keys. It support at least four different key types RSA, DSA, ECDSA and ed25519.
Commands
ssh-keygen -l -f /etc/ssh/ssh_host_XXXXkey.pubssh-keygen -vF host(-v flag added in OpenSSH 8.1[2])ssh-keygen -t ed25519(There is no need to set the key size, as all Ed25519 keys are 256 bits) other options:[-t dsa | ecdsa | ed25519 | rsa]
Activities
- Generate a public private key using ed25519 key format using the following command:
ssh-keygen -t ed25519 - Solve" "WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!" warning:
ssh-keygen -R SERVER_NAME-R Removes all keys belonging to hostname from a known_hosts filessh -oStrictHostKeyChecking=no SERVER_NAMETemporarily turning off host key checking
Both solutions have security implications.
- Understand different key types: dsa, ecdsa, ed25519 and rsa
Related commands: ssh-copy-id
See also
- Certification Authority
- OpenSSH/OpenSSH versions Release Notes/ Changelog
- Kerberos
- Cisco IOS/Configure public RSA key authentication
Advertising:
