asked on

Crypto Key needed for 2nd switch?

I am going to trunk 2 cisco 2960s via cat 5. I already copied the config from switch 1 to switch 2. trunks and ports are setup.

My question is, the crypto key on switch 2 now looks a little different that switch 1 (since I copied I thought it should be the same?) The first few lines are the same, but then it changes. Is this ok? Do I need to generate another crypto key for the second switch? Or since the first switch already has a crypto key, do I even need another one?

Soulja

Generate a new crypto key on the 2nd switch.

crypto key generate rsa modulus xxx

The crypto key is needed for you to SSH into the switch.

J G

ASKER

I generated a crypto Key -512

Do I need to creak a pki trust point/certificate (like the other swtich)?

Soulja

Is the switch reporting to a certificate authority? If not, then no.

Soulja

You also would want to do at least 1024 for the crypto key

J G

ASKER

I originally pasted in the crypto key from the switch I copied the config from. When I pasted it into the config the key changed about half way thru. can I leave this key?

Soulja

No need to paste in the key. You would just generate a new key.

J G

ASKER

I want to generate the pki trust point/certificate so the new switch is setup like the other swtich. How can I do this? Can I paste the key from the other switch (it changes about half way thru after I paste)? Will this be adequate?

J G

ASKER

How do I know if the first switch is reporting to a Certificate Authority? If the first switch is, does the 2nd switch that is trunked to it need to report to a CA as well?

ASKER CERTIFIED SOLUTION

Soulja

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial