Router Authentication

Unanswered Question
Apr 20th, 2007
User Badges:

Does all IOS support the above? Do I need to look for the feature set that support it? Which version and above uses this command "crypto key pubkey-chain dss" and which version and below uses the old command "crypto public-key"

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Richard Burts Fri, 04/20/2007 - 10:55
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN


All versions and all feature sets of IOS support router authentication.



phoonts01 Wed, 05/02/2007 - 18:05
User Badges:

Just found out that Cisco took out the CET feature from 12.1 onwards.

I've about ten 2500 routers that only support the classic crypto which is the Cisco Encryption Technology (CET). Those routers are running IOS version 11.2(18)P. The new core router is a 3725 with IOS Advanced IP Services 12.4(2)XA1 which does not have CET.

I cannot upgrade the IOS of 2500 routers as they do not have enough memory to use IPSEC.

What other alternatives do I have based on what I have? As long as I can encrypt the line is good enough.

Appreciate to all who knows how and/or done this before.




med_ddevlin Tue, 05/01/2007 - 11:05
User Badges:

The command "crypto key pubkey-chain dss" was introduced in IOS version 11.2.

Please rate if this helps.

phoonts01 Wed, 05/02/2007 - 18:17
User Badges:

I'm aware of the command but Cisco took out the dss parameter from 12.1 onwards. Now I can find rsa only.



This Discussion