General¶
Public Key Authentication¶
https://en.wikiversity.org/wiki/Cisco_IOS/Configure_public_RSA_key_authentication
# Generate RSA key on your client machine, laptop, or whatever
ssh-keygen
# Fold the key to format it for Cisco to understand
fold -b -w 72 ~/.ssh/id_rsa.pub
ROUTER# conf t
ROUTER(config)#ip ssh pubkey-chain
ROUTER(conf-ssh-pubkey)#username USERNAME
ROUTER(conf-ssh-pubkey-user)#key-string
ROUTER(conf-ssh-pubkey-data)#THE_FOLD_OUTPUT
ROUTER(conf-ssh-pubkey-data)#exit
ROUTER(conf-ssh-pubkey-user)#exi
ROUTER(conf-ssh-pubkey)#exi
ROUTER(config)#do wr
Next Generation Encryption¶
https://tools.cisco.com/security/center/resources/next_generation_cryptography