My understanding is when you create pub/priv keys such as
crypto key generate rsa mod 1024 general-keys exportable label myCA
1)The keys are put into NVRAM but they're hidden...yes?
2) If i want to protect my pub/priv keys it seems I can do either
crypto key encrypt [write] rsa [name key-name] passphrase passphrase
But what encryption method am I using to protect the keys????
3) The way i can specify key protection is using the export command
crypto key export rsa key-label pem {terminal | url url} {3des | des}
passphrase
In this method we can specify des or 3des for key protection AND a passwrod
Also if I specify the URL in this method as nvram the keys shows up with
dir nvram.
What is the difference between 2) and 3) as far as key protection and why
can I not see the encryption keys in nvram when I create them initially?
Please advise
THANKS!
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit
www.ipexpert.com
Are you a CCNP or CCIE and looking for a job? Check out
www.PlatinumPlacement.com
