Command Manual – SSH
H3C S7500E Series Ethernet Switches
Chapter 1 SSH Configuration Commands
1-26
Description
Use the
ssh user
command to create an SSH user and specify the service type and
authentication method.
Use the
undo ssh user username
command to delete an SSH user.
Note that:
z
For a publickey authentication user, you must configure the username and the
public key on the device. For a password authentication user, you can configure
the account information on either the device or the remote authentication server
such as a RADIUS server.
z
If you use the
ssh user
command to configure a public key for a user who has
already had a public key, the new one overwrites the old one.
z
Authentication method and public key configuration for a user that has logged in
takes effect when the user logs in next time.
z
If an SFTP user has been assigned a public key, it is necessary to set a working
folder for the user.
z
The working folder of an SFTP user is subject to the user authentication method.
For a user using only password authentication, the working folder is the AAA
authorized one. For a user using only publickey authentication or using both the
publickey and password authentication methods, the working folder is the one set
by using the
ssh user
command.
Related commands:
display ssh user-information
.
Examples
# Create an SSH user named
user1
, setting the service type as
sftp
, the authentication
method as
publickey
, the work folder of the SFTP server as
flash
, and assigning a
public key named
key1
to the user.
<Sysname> system-view
[Sysname] ssh user user1 service-type sftp authentication-type publickey
assign publickey key1 work-directory flash:
1.1.32 ssh2
Syntax
ssh2
server
[
port-number
] [
prefer-ctos-cipher
{
3des
|
aes128
|
des
} |
prefer-ctos-hmac
{
md5
|
md5-96
|
sha1
|
sha1-96
} |
prefer-kex
{
dh-group-exchange
|
dh-group1
|
dh-group14
} |
prefer-stoc-cipher
{
3des
|
aes128
|
des
} |
prefer-stoc-hmac
{
md5
|
md5-96
|
sha1
|
sha1-96
} ] *
View
User view
