Command Reference Guide
3Com Router 3000 Ethernet Family
Command Reference Guide
Error! Reference source not found.Error! Re
f
erence source not found.
3Com Corporation
9-32
The configuration of first-time authentication decides the action taken by the SSH client
when it accesses a server in the absence of the server’s public key:
z With first-time authentication enabled, the SSH client can attempt to access the
server and get the server’s public key through negotiation. Then this public key
could be saved on the client for next access.
z With first-time authentication disabled, the SSH client rejects to access a server.
To access the server, you must save its public key on the SSH client beforehand.
By default, first-time authentication is disabled on the SSH client.
Example
# Enable first-time authentication on the SSH client.
[3com] ssh client first-time enable
9.3.6 ssh2
Syntax
ssh2 { host-ip | host-name } [ port-num ] [ prefer_kex { dh_group1 |
dh_exchange_group } ] [ prefer_ctos_cipher { des | 3des | aes128 } ]
[ prefer_stoc_cipher { des | 3des | aes128 } ] [ prefer_ctos_hmac { sha1 | sha1_96 |
md5 | md5_96 } ] [ prefer_stoc_hmac { sha1 | sha1_96 | md5 | md5_96 } ]
View
System view
Parameter
host-ip: IP address of a server.
host-name: Name of a server, a string of 1 to 20 characters.
port-num: Port number of the server, in the range 0 to 65,535. The default port number
is 22.
prefer_kex: Preferred key exchange algorithm, Diffie-Hellman-Group1-SHA1 or
Diffie-Hellman-Group-Exchange-SHA1.
dh_group1: Key exchange algorithm Diffie-Hellman-Group1-SHA1, the default
algorithm.
dh_exchange_group: Key exchange algorithm
Diffie-Hellman-Group-Exchange-SHA1.
prefer_ctos_cipher: Preferred encryption algorithm from the client to the server. The
default algorithm is AES 128.
prefer_stoc_cipher: Preferred encryption algorithm from the server to the client. The
default algorithm is AES 128.
des: Encryption algorithm DES_CBC.