Rivest, Shamir, and Adleman (RSA) is an algorithm for public key cryptography. The algorithm can be used for certificate signing and encryption. When a device trustpoint is created, the RSA key is the private key used with the trustpoint.
To review existing device RSA key configurations, generate additional keys, or import/export keys to and from remote locations:
Key Name | Enter the 32-character maximum name assigned to the RSA key. |
Key Size | Set the size of the key as either 2048 (bits) or 4096 (bits). Leaving this value at the default setting of 2048 is recommended to ensure optimum functionality. |
Key Name | Enter the 32-character maximum name assigned to identify the RSA key. |
Key Passphrase | Define the key used by both the controller or service platform and the server (or repository) of the target RSA key. Click Show expose the actual characters used in the passphrase. When Show is not selected, the passphrase displays as a series of asterisks (****). |
URL | Provide the complete URL to the location of the RSA key. If needed, click Advanced to expand the dialog to display network address information to the location of the target key. The number of additional fields that populate the screen is dependent on the selected protocol. |
Advanced/Basic | Select either Advanced or Basic to switch between a basic URL and an advanced location to specify key location. |
Protocol | Select the protocol used for
importing the target key. Available options include:
|
Port | Set the port. This option is not valid for cf and usb1-4. |
Host | Provide the hostname string or
numeric IP address of the server used to import the RSA key.
Hostnames cannot include an underscore character. This
option is not valid for cf and
usb1-4. Select IPv4 Address to use an IPv4 formatted address as the host. Select IPv6 Address to use an IPv6 formatted address as the host. IPv6 provides enhanced identification and location information for computers on networks routing traffic across the Internet. IPv6 addresses are composed of eight groups of four hexadecimal digits separated by colons. |
Path/File | Specify the path to the RSA key. Enter the complete relative path to the key on the server. |
Key Name | Enter the 32-character maximum name assigned to the RSA key. |
Key Passphrase | Define the key used by both the controller or service platform and the server. Click Show expose the actual characters used in the passphrase. When Show is not selected, the passphrase displays as a series of asterisks (****). |
URL | Provide the complete URL to the location of the key. If needed, click Advanced to expand the dialog to display network address information to the location of the target key. The number of additional fields that populate the screen is dependent on the selected protocol. |
Protocol | Select the protocol used for
exporting the RSA key. Available options include:
|
Port | Set the port. This option is not valid for cf and usb1-4. |
Host | Provide the hostname string or
numeric IP address of the server used to export the RSA key.
Hostnames cannot include an underscore character. This
option is not valid for cf and
usb1-4. Select IPv4 Address to use an IPv4 formatted address as the host. Select IPv6 Address to use an IPv6 formatted address as the host. IPv6 provides enhanced identification and location information for computers on networks routing traffic across the Internet. IPv6 addresses are composed of eight groups of four hexadecimal digits separated by colons. |
Path/File | Specify the path to the key. Enter the complete relative path to the key on the server. |