ExtremeXOS 16.1 and earlier versions generated DSA-2048 keys using ssh keygen provided by the SSH-Toolkit library. Starting with ExtremeXOS 21.1, ExtremeXOS generates more secure RSA-2048 keys due to switching to using the OpenSSH library, which does not support DSA-2048.
When upgrading to ExtremeXOS 21.1 and later, SSH keys generated by earlier ExtremeXOS versions (16.1 and earlier) are compatible and do not need to be re-generated.
Note
If a switch is downgraded from ExtremeXOS 21.1 or later to previous releases, with RSA key saved, the key becomes invalid.