Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

SSH Keys

When you use PuttyGen from the IDS MC, are you creating the pub/priv keys for the sensor, or for the ID MC?

1 REPLY
Community Member

Re: SSH Keys

This procedure allows IDS MC to authenticate itself with the sensor without entering a password.

Whatever key generation technique, there is a general rule of thumb: Always generate the key pair on the host that is to keep the private key. This avoids ever having to transfer the private key between hosts.

In the case of RSA Authentication, the public key is then set up on the sensor using the "ssh authorized-keys" command. At the time of authentication, the sensor makes the client prove it has access to the private key.

165
Views
0
Helpful
1
Replies
CreatePlease to create content