On Cisco routers, there are two mutually exclusive types of RSA key pairs: special-usage keys and general-purpose keys. When you generate RSA key pairs, you are prompted to select either special-usage keys or general-purpose keys. Which set of statements is true?
A. If you generate special-usage keys, two pairs of RSA keys are generated. One pair is used with any IKE policy that specifies RSA signatures as the authentication method. The other pair is used with any IKE policy that specifies RSA encrypted keys as the authentication method.
B. If you generate a named key pair, only one pair of RSA keys is generated. This pair is used with IKE policies that specify either RSA signatures or RSA encrypted keys. Therefore, a general-purpose key pair might be used more frequently than a special-usage key pair.
C. If you generate general-purpose keys, you must also specify the usage-key keyword or the general-key keyword. Named key pairs allow you to have multiple RSA key pairs, enabling the Cisco IOS Software to maintain a different key pair for each identity certificate.
D. special-usage key pair is default in Cisco IOS
On Cisco routers, there are two mutually exclusive types of RSA key pairs: special-usage keys and general-purpose keys.
-
answerhappygod
- Site Admin
- Posts: 899604
- Joined: Mon Aug 02, 2021 8:13 am
On Cisco routers, there are two mutually exclusive types of RSA key pairs: special-usage keys and general-purpose keys.
Join a community of subject matter experts. Register for FREE to view solutions, replies, and use search function. Request answer by replying!