User Authentication
3-67
CLI – 
This example shows how to copy a public-key used by SSH from an TFTP 
server. Note that public key authentication through SSH is only supported for users 
configured locally on the switch.
Configuring the SSH Server
The SSH server includes basic settings for authentication. 
Field Attributes
• SSH Server Status – Allows you to enable/disable the SSH server on the switch. 
(Default: Disabled)
• Version – The Secure Shell version number. Version 2.0 is displayed, but the 
switch supports management access via either SSH Version 1.5 or 2.0 clients.
• SSH Authentication Timeout – Specifies the time interval in seconds that the 
SSH server waits for a response from a client during an authentication attempt.
(Range: 1 to 120 seconds; Default: 120 seconds)
• SSH Authentication Retries – Specifies the number of authentication attempts 
that a client is allowed before authentication fails and the client has to restart the 
authentication process. (Range: 1-5 times; Default: 3)
• SSH Server-Key Size – Specifies the SSH server key size. (Range: 512-896 bits; 
Default:768)
- The server key is a private key that is never shared outside the switch.
- The host key is shared with the SSH client, and is fixed at 1024 bits. 
Console#copy tftp public-key 4-24
TFTP server IP address: 192.168.1.19
Choose public key type:
1. RSA: 2. DSA: <1-2>: 1
Source file name: steve.pub
Username: steve
TFTP Download
Success.
Write to FLASH Programming.
Success.
Console#show public-key user 4-97
steve:
RSA:
1024 37 
1438466849167093683923373032012167500183640716341019379638480555999112
0799099855148348217890199813185258913277124318157123167424790379265273151
7645996445200718867580932892335313126801093139027656216876904516683400280
1644806222735312064108007531932299100088804293556331348668582852529675373
63295264191089500393 rsa-key-20061102
DSA:
Console#