No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Command Reference

AR500, AR510, and AR530 V200R007

This document describes all the configuration commands of the device, including the command function, syntax, parameters, views, default level, usage guidelines, examples, and related commands.
Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
ecc peer-public-key

ecc peer-public-key

Function

The ecc peer-public-key command generates an ECC public key and enters the ECC public key view.

The undo ecc peer-public-key command deletes the ECC public key.

By default, no ECC public key is generated.

Format

ecc peer-public-key key-name encoding-type { der | openssh | pem }

undo ecc peer-public-key key-name

Parameters

Parameter Description Value
key-name Specifies the ECC public key name. The value is a string of 1 to 30 case-sensitive characters without spaces.
encoding-type Specifies the encoding format of the ECC public key. -
der

Sets the encoding format of the ECC public key to DER.

DER uses hexadecimal notation to encode data.

-
openssh

Sets the encoding format of the ECC public key to OpenSSH.

OpenSSH uses base64 notation to encode data.

OpenSSH is revised from PEM.

-
pem

Sets the encoding format of the ECC public key to PEM.

PEM uses base64 notation to encode data.

-

Views

System view

Default Level

3: Management level

Usage Guidelines

Usage Scenario

When you use an ECC public key for authentication, specify the public key on the server for the client of SSH users. When the client logs in to the server, the server uses the specified public key to authenticate the client.

After you enter the ECC public key view, run the public-key-code begin command, and copy the ECC public key to the server.

The public key on the client is randomly generated by the client software.

If an ECC public key has been assigned to an SSH user, delete the mapping between the ECC public key and the SSH user. If you do not delete the mapping, the undo ecc peer-public-key command cannot delete the ECC public key.

Follow-up Procedure

After you copy the ECC public key generated on the client to the server, perform the following operations to exit the ECC public key view:
  1. Run the public-key-code end command to return to the ECC public key view.
  2. Run the peer-public-key end command to exit the ECC public key view and return to the system view.

Precautions

A maximum of 20 ECC public keys can be configured.

The peer public key supports only PKCS#1. Other PKCS versions are not supported.

Example

# Create an ECC public key and enter the ECC public key view.

<Huawei> system-view
[Huawei] ecc peer-public-key ecc-peer-key encoding-type pem
Info: Enter "ECC public key" view, return system view with "peer-public-key end".
[Huawei-ecc-public-key] public-key-code begin
Info: Enter "ECC key code" view, return the last view with "public-key-code end". 
[Huawei-ecc-key-code] ---- BEGIN SSH2 PUBLIC KEY ----
[Huawei-ecc-key-code] AAAAE2VjZHNhLXNoYTItbmlzdHA1MjEAAAAIbmlzdHA1MjEAAACDBL5J4v3pqi5S
[Huawei-ecc-key-code] ALI9lvLw4cdvtpD2AC6sEJXg9GDCD5vGBnkXlKmnOy6d1TyrXx57ZPNnrSdqVkHC
[Huawei-ecc-key-code] sMBa63vSwg1XsVW2qZgx8H57+FJiTPY61b1Vfst9GUif1ymfpB7XrbdYZDownoh0
[Huawei-ecc-key-code] FZNadZtIf2CRc0OeiKXbCSPP25dfoT/DTcc=
[Huawei-ecc-key-code] ---- END SSH2 PUBLIC KEY ----
[Huawei-ecc-key-code] public-key-code end
[Huawei-ecc-public-key] peer-public-key end

# Delete an ECC public key.

<Huawei> system-view
[Huawei] undo ecc peer-public-key ecc-peer-key
Translation
Download
Updated: 2019-02-18

Document ID: EDOC1000097293

Views: 37209

Downloads: 101

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next