HPE Community
Switches, Hubs, and Modems
1832198 Members
3673 Online
110038 Solutions
New Discussion

crypto key generate ssh

 
Stuart Teo
Trusted Contributor

‎11-06-2003 12:38 PM

‎11-06-2003 12:38 PM

crypto key generate ssh

In a 5300xl running E.07.37, I noticed a behavior when I issue the "crypto key generate ssh" command.

On some switches, the key was generated real quick. In some switches, it would take up to 1 minute.

What exactly is the key/entropy cache in the message "Installing new RSA key. If the key/entropy cache is depleted, this could take up to a minute."
If a problem can be fixed, there's nothing to worry. If a problem can't be fixed, worrying ain't gonna help. Bottom line: don't worry.
0 Kudos
2 REPLIES 2
Jerome Henry
Honored Contributor

‎11-06-2003 11:40 PM

‎11-06-2003 11:40 PM

Re: crypto key generate ssh

Entropy usually refers to a colletion of random values. When key/entropy file is full, then the system uses these random values to calculate a hard to guess key.
If this file is depleted, then the system doesn't have random values, and has to calculate many random numbers in order to make a solid key. This process (calculating values you can't take from elsewhere) takes time, that's why it turns to a minute or so in this case.

hth

J
You can lean only on what resists you...
0 Kudos
Stuart Teo
Trusted Contributor

‎11-07-2003 02:37 AM

‎11-07-2003 02:37 AM

Re: crypto key generate ssh

Thanks for your response! Let me rephrase my question. Under what condition would the key/entropy cache is depleted?
If a problem can be fixed, there's nothing to worry. If a problem can't be fixed, worrying ain't gonna help. Bottom line: don't worry.
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.