Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

TechLibrary
Navigation
Table of Contents
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    hostkey-algorithm

    Syntax

    hostkey-algorithm <algorithm | no-algorithm>

    Hierarchy Level

    [edit system services ssh]

    Release Information

    Statement introduced in Release 11.2 of Junos OS.

    <algorithm | no algorithm> statements introduced in Release 12.2 of Junos OS.

    Description

    Allow or disallow a host-key signature algorithm for the SSH host to use to authenticate another host.

    Options

    • no-ssh-dss—Do not allow generation of a 1024-bit Digital Signature Algorithm (DSA) host-key.
    • no-ssh-ecdsa—Do not allow generation of an Elliptic Curve Digital Signature Algorithm (ECDSA) host-key.
    • no-ssh-rsa—Do not allow generation of an RSA host-key.
    • ssh-ecdsa—Allow generation of an ECDSA host-key.
    • ssh-dss—Allow generation of a 1024-bit DSA host-key.

      Note: DSA keys are not supported in FIPS, so the ssh-dss option is not available on systems operating in FIPS mode.

    • ssh-rsa—Allow generation of an RSA host-key.

    Required Privilege Level

    system—To view this statement in the configuration.

    system-control—To add this statement to the configuration.

     

    Related Documentation

     

    Published: 2013-01-08

    Previous Page Next Page