Manualshelf

IPv6 Configuration Guide K/KA/KB.15.15

ManualsBrandsHP ManualsNetwork HardwareHP 5406R-8XGT/8SFP+ (No PSU) v2 zl2 Switch
61626364656667686970
SSH for IPv6 provides the same Telnet-like functions through encrypted, authenticated transactions
as SSH for IPv4. SSH for IPv6 provides CLI (console) access and secure file transfer functionality.
The following types of transactions are supported:
Client public-key authentication
Public keys from SSH clients are stored on the switch. Access to the switch is granted only to
a client whose private key matches a stored public key.
Password-only client authentication
The switch is SSH-enabled but is not configured with the login method that authenticates a
client's public-key. Instead, after the switch authenticates itself to a client, users connected to
the client authenticate themselves to the switch by providing a valid password that matches
the operator- and/or manager-level password configured and stored locally on the switch or
on a RADIUS or TACACS+ server.
Secure Copy (SCP) and Secure FTP (SFTP) client applications
You can use either one SCP session or one SFTP session at a given time to perform secure file
transfers to and from the switch.
SCP and SFTP for IPv6
You can take advantage of the SCP and SFTP client applications to provide a secure alternative
to TFTP for transferring sensitive switch information, such as configuration files and login information,
between the switch and an administrator workstation.
Because SCP and SFTP run over an encrypted SSH session, you can use a secure SSH tunnel to:
Transfer files and update HP Switch software images.
Distribute new software images with automated scripts that make it easier to upgrade multiple
switches simultaneously and securely.
You can perform secure file transfers to and from IPv4 and IPv6 client devices by entering the ip
ssh filetransfer command.
After an IPv6 client running SCP/SFTP successfully authenticates and opens an SSH session on the
switch, you can perform secure file transfers to and from IPv4 and IPv6 client devices by entering
the ip ssh filetransfer command. For instructions on how to use this command, see
“Performing secure file transfers to and from IPv4 and IPv6 client devices” (page 61).
For information on the file transfer commands and software utilities to use, see the documentation
that comes with an SCP or SFTP client application.
NOTE: Enabling SSH file transfer disables TFTP and auto-TFTP operation.
The switch supports one SFTP session or one SCP session at a time.
All files on the switch have read-write permission. However, several SFTP commands, such as
create or remove, are not supported and return an error.
For complete information on how to configure SCP or SFTP in an SSH session to copy files to and
from the switch, see the "File Transfers" appendix in the Management and Configuration Guide
for your switch.
SCP and SFTP for IPv6 67