Configuring the Device as an SSH Server 1113
For an SSH user that uses publickey authentication to login, the server must be
configured with the client RSA or DSA host public key in advance, and the
corresponding private key for the client must be specified on the client.
You can manually configure or import the publickey public key from a public key
file. In the former case, you can manually copy the client’s public key configuration
to the server. In the latter case, the system automatically converts the public key to
a string coded using the PKCS standard. Before importing the public key, you must
upload the public key file (in binary) to the server through FTP or TFTP.
c
CAUTION:
■ When the device functions as the SSH server, you cannot use Secure CRT 4.07
to upload the client public key to the server.
■ You can configure at most 20 client pubic keys on an SSH server.
Configuring a client public key manually
Follow these steps to configure the client public key manually:
Importing a client public key from a public key file
Follow these steps to import a public key from a public key file:
Configuring an SSH User This configuration allows you to create an SSH user and specify the service type
and authentication method.
Follow these steps to configure an SSH user:
To do… Use the command… Remarks
Enter system view System-view -
Enter public key view public-key peer keyname -
Enter public key code view public-key-code begin -
Configure a client public key Enter the content of the
public key
Required
The content must be a
hexadecimal string that is
generated randomly by the
SSH-supported client software
and coded compliant to PKCS.
Spaces and carriage returns
are allowed between
characters.
Return from public key code
view to public key view
public-key-code end -
When you exit public key
code view, the system
automatically saves the public
key.
Return from public key view
to system view
peer-public-key end -
To do… Use the command… Remarks
Enter system view system-view -
Import the public key from a
public key file
public-key peer keyname
import sshkey filename
Required
To Next Page
Loading...
