Embedded Files
This section is about creating a new SSH key using ssh-keygen.
Creating a SSH Key
Creating a SSH Key
Regardless on whether to use SSH key for certificate authority or access authentication usage, you still need to create a key.
Create ed25519 Key
Create ed25519 Key
. As of year 2020, it's best to use ed25519 algorithm over RSA for various reasons. Among them are:
- More hardened.
- Faster and efficient than RSA.
- No renewal limitation. (E.g. RSA bit-size must move up from time to time like anything below 2048-bits are considered unsafe in year 2020).
The command is as follows:
$ ssh-keygen -o -a 200 -t ed25519 -f ~/.ssh/id_ed25519 -C "john@example.com"-ostands for using the OpenSSH format over the conventional PEM format-astands for KDF resiliency where the bigger the number, the longer it takes to authenticate your private key's passphrase in exchange of heavier resistance.-tstands for key scheme. In this case, we wanted25519.-fstands for output location where you want to save it in~/.ssh/id_<name>.-Cstands for comments. It can be anything.
Create RSA Key
Create RSA Key
Alternatively, one can stick back to RSA key but as of 2020, you must create a key above 2048-bit versions (recommended 4096-bit).
The command is as follows:
$ ssh-keygen -o -a 200 -t rsa -b 4096 -f ~/.ssh/id_rsa -C "john@example.com"-ostands for using the OpenSSH format over the conventional PEM format-astands for KDF resiliency where the bigger the number, the longer it takes to authenticate your private key's passphrase in exchange of heavier resistance.-tstands for key scheme. In this case, we wantrsa.-fstands for output location where you want to save it in~/.ssh/id_<name>.-Cstands for comments. It can be anything.
That's all about creating SSH Key.
Page updated
Google Sites
Report abuse