3Com Switch 7750 Configuration Guide Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module

711

712

713

714

715

716

717

718

719

720

718 CHAPTER 67: SSH TERMINAL SERVICES

Configuring supported protocols

CAUTION:

■ When SSH protocol is specified, to ensure a successful login, you must

configure the AAA authentication using the authentication-mode scheme

command.

■ The protocol inbound ssh configuration fails if you configured

authentication-mode password or authentication-mode none. When you

configure SSH protocol successfully for the user interface, then you cannot

configure authentication-mode password or authentication-mode none

any more.

Generating or destroying RSA key pairs

This configuration task is used to generate or destroy the server RSA key pair,

including the host RSA key pair and the server RSA key pair.

■ The name of the host RSA key pair is in the format of switch name plus _Host,

for example, 3Com_Host.

■ The name of the server RSA key pair is in the format of switch name plus

_Server, for example, 3Com_Server.

■ Server RSA key pair (3Com_Server) is not used in SSHv2.0; therefore, when the

rsa local-key-pair create command is executed, the system only prompts you

the host RSA key pair (3Com_Host) is generated, and does not inform you the

information about the server RSA key pair even if the server RSA key pair is

generated in the background for the purpose of SSHv1.x compatibility. You can

Set SSH authentication

timeout time

ssh server timeout

Refer to the

“Configuring server SSH

attributes”

Set SSH authentication retry

times

ssh server

authentication-retries

Set the update interval for the

server key

ssh server rekey-interval

Specify the server compatible

with the SSHv1.x

version-supported client.

ssh server

compatible-ssh1x enable

Allocate public keys for SSH

users

ssh user username assign

rsa-key keyname

Refer to the “Configuring

client public keys”

Tabl e 550 Configure supported protocols

Operation Command Description

Enter system view system-view -

Enter one or multiple user

interface views

user-interface [

type-keyword ] number [

ending-number ]

Required

Configure the protocols

supported in the user

interface view(s)

protocol inbound { all |ssh |

telnet }

Optional

By default, the system

supports both Telnet and SSH

Table 549 Configure SSHv2.0 server

Configuration Keyword Description