crypto key zeroize

Deletes the crypto host key pair from the flash memory.

Syntax

crypto key zeroize [ dsa | rsa ]

Command Default

SSH is not enabled and the host key pair is saved in the flash memory.

Parameters

dsa: Deletes the DSA host key pair.
rsa: Deletes the RSA host key pair.

Modes

Global configuration mode

Usage Guidelines

When a host key is generated, it is saved to the flash memory of all management modules. The time to initially generate SSH keys varies depending on the configuration, and can be from a under a minute to several minutes. To disable SSH, you delete all of the host keys from the device. When a host key is deleted, it is deleted from the flash memory of all management modules.

Examples

The following example shows how to delete the DSA key pair.

device(config)# crypto key zeroize dsa

The following example shows how to delete the RSA key pair.

device(config)# crypto key zeroize rsa

The following example shows how to delete DSA and RSA key pairs from flash memory.

device(config)# crypto key zeroize

History

Release version	Command history
5.9.00	This command was modified. The cr option was removed.

Contents