3Com Switch 7750 Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module

771

772

773

774

775

776

777

778

779

780

SSH Terminal Services 775

CAUTION:

■ When SSH protocol is specified, to ensure a successful login, you must

configure the AAA authentication using the authentication-mode scheme

command.

■ The protocol inbound ssh configuration fails if you configured

authentication-mode password or authentication-mode none. When

you configure SSH protocol successfully for the user interface, then you cannot

configure authentication-mode password or authentication-mode none

any more.

Generating or destroying RSA key pairs

This configuration task is used to generate or destroy the server RSA key pair,

including the host RSA key pair and the server RSA key pair.

■ The name of the host RSA key pair is in the format of switch name plus _Host,

for example, 3Com_Host.

■ The name of the server RSA key pair is in the format of switch name plus

_Server, for example, 3Com_Server.

Server RSA key pair (3Com_Server) is not used in SSH2.0; therefore, when the rsa

local-key-pair create command is executed, the system only prompts you the

host RSA key pair (3Com_Host) is generated, and does not inform you the

information about the server RSA key pair even if the server RSA key pair is

generated in the background for the purpose of SSH1.x compatibility. You can use

the display rsa local-key-pair public command to display the generated key

pairs.

After you configure the rsa local-key-pair command, the system prompts you to

define the key length.

■ In SSH1.x, the key length is in the range of 512 to 2,048 (bits).

■ In SSH2.0, the key length is in the range of 768 to 2,048 (bits).

CAUTION:

■ For a successful SSH login, you must generate a local RSA key pair first.

Enter one or multiple user

interface views

user-interface

[ type-keyword ] number

[ ending-number ]

Required

Configure the protocols

supported in the user

interface view(s)

protocol inbound { all |ssh |

telnet }

Optional

By default, the system

supports both Telnet and SSH

Table 609 Configure supported protocols

Operation Command Description

Table 610 Generate or destroy RSA key pairs

Operation Command Description

Enter system view system-view -

Generate a local RSA key pair rsa local-key-pair create Required

Destroy a local RSA key pair rsa local-key-pair destroy Optional