Key Management System
Configuring Key Chain Management
[ accept-lifetime infinite ] [ send-lifetime infinite ]
accept-lifetime infinite: Allows packets with this key to
be accepted at any time from boot-up until the key
is removed.
send-lifetime infinite: Allows the switch to send this
key as authorization, from boot-up until the key is
removed.
show key-chain < chain_name >
Displays the detail information about the keys used
in the key chain named < chain_name >.
For example, to generate a new time-independent key for the Procurve1 key
chain entry:
Adds a new Time-Independent
key to the “Procurve1” chain.
Displays keys in the key chain
entry.
Figure 15-2. Example of Adding and Displaying a Time-Independent Key to a Key Chain Entry
Assigning Time-Dependent Keys to a Chain
A time-dependent key has Accept or Send time constraints. It is valid only
during the times that are defined for the key . If a time-dependent key is used,
there is usually more than one key in the key chain entry.
Syntax: [no] key-chain < chain_name > key < key_id >
Generates or deletes a key in the key chain entry
< chain_name >. Using the optional no form of the
command deletes the key. The < key_id > is any
number from 0-255.
15-5
