3Com 5500-SI Switch User Manual


  Open as PDF
of 686
 
SSH Terminal Services 205
SSH Client Configuration Table 186 describes SSH configuration tasks.
In the initial authentication, if the SSH client does not have the public key for the
server which it accesses for the first time, the client continues to access the server and
save locally the public key of the server. Then at the next access, the client can
authenticate the server using the public key saved locally.
Displaying SSH
Configuration
Use the display commands in any view to view the running of SSH and further to
check the configuration result.
Users using SecureCRT as the client side software will fail to log onto a switch if they
check the Enable OpenSSH agent forwarding option.
Table 186 Configure SSH client
Operation Command Description
Enter system view system-view -
Enable the connection
between SSH client and
server
ssh2 host-ipaddr [ port ] [ prefer_kex {
dh_group1 | dh_exchange_group } ] [
prefer_ctos_cipher { des | aes128 } ] [
prefer_stoc_cipher { des | aes128 } ] [
prefer_ctos_hmac { sha1 | sha1_96 |
md5 | md5_96 } ] [ prefer_stoc_hmac
{ sha1 | sha1_96 | md5 | md5_96 } ]
Required
You can use this command to
enable the connection between
SSH client and server, define
key exchange algorithm
preference, encryption
algorithm preference and
HMAC algorithm preference
between the server and client.
Allocate a public key to
the server
ssh client server-ip assign rsa-key
keyname
Required
You can specify on the client
the public key for the server to
be connected to guarantee the
client can be connected to a
reliable server.
Configure the client to
run the initial
authentication
ssh client first-time enable Optional
By default, the client runs the
initial authentication.
Table 187 Display SSH configuration
Operation Command
Display host and server public keys display rsa local-key-pair public
Display client RSA public key display rsa peer-public-key [ brief | name keyname ]
Display SSH status and session
information
display ssh server { status | session }
Display SSH user information display ssh user-information [ username ]
 previous next