Support User Manuals

3Com 5500-SI Switch User Manual

Open as PDF

of 686

508 CHAPTER 22: FILE SYSTEM MANAGEMENT

Configuring and Canceling Local RSA Key Pair

In executing this command, if you have configured RSA host key pair, the system gives

an alarm after using this command and prompts that the existing one will be

replaced. The server key pair is created dynamically by the SSH server. The maximum

bit range of both key pairs is 2048 bits and the minimum is 512.

Please perform the following configurations in System View.

Table 578 Configuring and Canceling Local RSA Key Pair

For a successful SSH login, you must configure and generate the local RSA key pairs.

To generate local key pairs, you just need to execute the command once, with no

further action required even after the system is rebooted.

Configuring Authentication Type

For a new user, you must specify authentication type. Otherwise, they cannot access

the Switch.

Perform the following configurations in System View.

Table 579 Configuring Authentication Type

If the configuration is RSA authentication type, then the RSA public key of the client

user must be configured on the Switch, that is to perform the 7 and 8 serial number

marked configuration.

By default, no authentication type is specified for a new user, so they cannot access

the Switch.

Defining Update Interval of Server Key

Perform the following configurations in System View.

Table 580 Defining Update Interval of Server Key

By default, the system does not update server key.

Defining SSH Authentication Timeout Value

Perform the following configurations in System View.

Table 581 Defining SSH Authentication Timeout Value

By default, the timeout value for SSH authentication is 60 seconds.

Operation Command

Configure local RSA key pair rsa local-key-pair create

Cancel local RSA key pair rsa local-key-pair destroy

Operation Command

Configure authentication type ssh user username authentication-type {

password | rsa | all }

Remove authentication type setting undo ssh user username authentication-type

Operation Command

Define update interval of server key ssh server rekey-interval hours

Restore the default update interval undo ssh server rekey-interval

Operation Command

Define SSH authentication timeout value ssh server timeout seconds

Restore the default timeout value undo ssh server timeout

previous next