60
Configuring the device as an SSH server
This section provides the SSH server configuration procedure used when the SSH client
authentication method is password. For more information about SSH and publickey authentication
configuration, see
Security Configuration Guide
.
To configure the device as an SSH server:
Step
Command
Remarks
1.
Enter system view.
system-view
N/A
2.
Create local key
pairs.
•
In non-FIPS mode:
public-key local create
{
dsa
|
ecdsa
[
secp192r1
|
secp256r1
|
secp384r1
] |
rsa
}
[
name
key-name
]
•
In FIPS mode:
public-key local create
{
dsa
|
ecdsa
[
secp256r1
|
secp384r1
] |
rsa
}
[
name
key-name
]
By default, no local key pairs are created.
3.
Enable the Stelnet
server.
ssh server enable
By default, the Stelnet server is disabled.
4.
(Optional.) Create an
SSH user and
specify the
authentication mode.
•
In non-FIPS mode:
ssh user
username
service-type stelnet
authentication-type
{
password
| {
any
|
password-publickey
|
publickey
}
assign
publickey
keyname
}
•
In FIPS mode:
ssh user
username
service-type stelnet
authentication-type
{
password
|
password-publickey
assign
publickey
keyname
}
By default, no SSH user is configured on the
device.
5.
Enter VTY line view
or class view.
•
Enter VTY line view:
line vty
first
-
number
[
last-number
]
•
Enter VTY line class
view:
line class vty
A setting in user line view applies only to the
user line. A setting in user line class view
applies to all user lines of the class.
A non-default setting in either view takes
precedence over a default setting in the other
view. A non-default setting in user line view
takes precedence over a non-default setting
in user line class view.
A setting in user line class view does not take
effect for current online users. It takes effect
only for new login users.
Содержание FlexNetwork 10500 Series
Страница 139: ...130 Sysname display version ...