Manualshelf

H3C S7500E Series Ethernet Switches Operation Manual

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
1281128212831284128512861287128812891290
Operation Manual – SSH
H3C S7500E Series Ethernet Switches Chapter 1 SSH Configuration
1-18
III. Configuration procedure
1) Configure the SSH server
# Generate an RSA key pair and enable SSH server.
<Switch> system-view
[Switch] public-key local create rsa
[Switch] ssh server enable
# Configure an IP address for VLAN-interface 1, which the SSH client will use as the
destination for SSH connection.
[Switch] interface vlan-interface 1
[Switch-Vlan-interface1] ip address 192.168.1.40 255.255.255.0
[Switch-Vlan-interface1] quit
# Set the authentication mode for the user interface to AAA.
[Switch] user-interface vty 0 4
[Switch-ui-vty0-4] authentication-mode scheme
# Enable the user interface to support SSH.
[Switch-ui-vty0-4] protocol inbound ssh
# Set the user command privilege level to 3.
[Switch-ui-vty0-4] user privilege level 3
[Switch-ui-vty0-4] quit
Note:
Before performing the following tasks, you must generate an RSA key pair (using the
client software) on the client, save the public key in a file named key.pub, and then
upload the file to the SSH server through FTP or TFTP. For details, refer to Configuring
the SSH Client.
# Import the client’s public key from file key.pub.
[Switch] public-key peer Switch001 import sshkey key.pub
# Specify the authentication type for user client002 as publickey, and assign the public
key Switch001 for the user.
[Switch] ssh user client002 service-type stelnet authentication-type
publickey assign publickey Switch001
2) Configure the SSH client
# Generate an RSA key pair.
Run PuTTYGen.exe, choose SSH-2 RSA and click Generate.