3Com Switch 8800 Advanced Software V5 Configuration Guide
962 CHAPTER 72: CONFIGURING SSH VERSION 2.0
<SwitchB> system-view
[SwitchB] rsa local-key-pair create
[SwitchB] ssh server enable
# Assign an IP address to the Vlan-interface 1. The client will be connected to the
SSH server through this address.
[SwitchB] interface vlan-interface 1
[SwitchB-Vlan-interface1] ip address 10.165.87.136 255.255.255.0
[SwitchB-Vlan-interface1] quit
# Configure the SSH client to log into the user interface through AAA
[SwitchB] user-interface vty 1
[SwitchB-ui-vty1] authentication-mode scheme
# Set the remote user login protocol on the switch to SSH.
[SwitchB-ui-vty1] protocol inbound ssh
[SwitchB-ui-vty1] quit
# Create a local user named "client001".
[SwitchB] local-user client001
[SwitchB-luser-client001] password simple aabbccddeeff
[SwitchB-luser-client001] service-type ssh level 3
[SwitchB-luser-client001] quit
# Configure the password authentication mode for the SSH user. Configure the
authentication timeout time, number of attempts, and server key update interval
as default values.
[SwitchB] ssh user client001 authentication-type password
n
If configuring RSA authentication for the SSH user, you need to configure a host
public key for Switch A. For details, refer to related section in
“SSH Server
Configuration Examples” on page 959.
2 Configure Switch A
# The IP address of the Vlan interface on Switch A and the IP address of the Vlan
interface on Switch B must be in the same network segment. It is set to
10.165.87.137.
<SwitchA> system-view
[SwitchA] interface vlan-interface 1
[SwitchA-Vlan-interface1] ip address 10.165.87.137 255.255.255.0
[SwitchA-Vlan-interface1] quit
# Configure the client not to perform first authentication to the server.
[SwitchA] undo ssh client first-time
# Configure a host public key for the SSH server on the client.
[SwitchA] rsa peer-public-key public
[SwitchA-rsa-public-key]public-key-code begin
[SwitchA-rsa-key-code]308186028180739A291ABDA704F5D93DC8FDF84C427463