If the passphrase is lost or forgotten, a new There is no way to recover a lost passphrase. Passphrase can be changed later by using the -p option. Prose has only 1-2 bits of entropy per character, and provides very bad passphrases), andĬontain a mix of upper and lowercase letters, numbers, and non-alphanumeric characters. Good passphrasesĪre 10-30 characters long, are not simple sentences or otherwise easily guessable (English Punctuation, numbers, whitespace, or any string of characters you want.
Passphrase is similar to a password, except it can be a phrase with a series of words, (host keys must have an empty passphrase), or it may be a string of arbitrary length. The passphrase may be empty to indicate no passphrase The public key is stored in a file with the same name but “.pub” appended. Normally this program generates the key and asks for a file in which to store the private Additionally, the system administrator may use this to
Normally each user wishing to use SSH with public key authentication runs this once toĬreate the authentication key in ~/.ssh/identity, ~/.ssh/id_dsa, ~/.ssh/id_ecdsa, Whether given keys have been revoked by one.
See the MODULI GENERATION section for details.įinally, ssh-keygen can be used to generate and update Key Revocation Lists, and to test Ssh-keygen is also used to generate groups for use in Diffie-Hellman group exchange (DH. If invoked without anyĪrguments, ssh-keygen will generate an RSA key for use in SSH protocol 2 connections. The type of key to be generated is specified with the -t option. Weaknesses and doesn't support many of the advanced features available for protocol 2.
It suffers from a number of cryptographic ssh-keygen canĬreate keys for use by SSH protocol versions 1 and 2. DESCRIPTION ssh-keygen generates, manages and converts authentication keys for ssh(1). Ssh-keygen -A ssh-keygen -k -f krl_file file. Ssh-keygen -s ca_key -I certificate_identity Ssh-keygen -D pkcs11 ssh-keygen -F hostname NAME ssh-keygen - authentication key generation, management and conversion Provided by: openssh-client_7.2p2-4_amd64