74
Default
In non-FIPS mode, all protocols are supported.
In FIPS mode, SSH is supported.
Views
VTY line view
VTY line class view
Predefined user roles
network-admin
Parameters
all: Supports all protocols, including SSH and Telnet.
ssh: Supports SSH only.
telnet: Supports Telnet only.
Usage guidelines
A configuration change in user line view does not take effect for the current session. It takes effect for
subsequent login sessions.
Before configuring a user line to support SSH, set the authentication mode to scheme for the user
line.
In VTY line view, this command is associated with the authentication-mode command. If you
specify a non-default value for one of the two commands, the other command uses the default
setting, regardless of the setting in VTY line class view.
• If the settings of the two commands in VTY line view are both the default settings, the settings
for the commands in VTY line class view take effect.
• If the settings of the two commands in VTY line view are both non-default settings, the
non-default settings in VTY line view take effect.
• If only one command has a non-default setting in VTY line view, the other command uses the
default setting, regardless of the setting in VTY line class view.
Examples
# Enable user lines VTY 0 through VTY 4 to support only SSH.
<Sysname> system-view
[Sysname] line vty 0 4
[Sysname-line-vty0-4] authentication-mode scheme
[Sysname-line-vty0-4] protocol inbound ssh
# Enable SSH support and set the authentication mode to scheme in VTY line class view. Enable
user lines VTY 0 through VTY 4 to support all protocols and disable authentication for the user lines.
<Sysname> system-view
[Sysname] line class vty
[Sysname-line-class-vty] authentication-mode scheme
[Sysname-line-class-vty] protocol inbound ssh
[Sysname-line-class-vty] line vty 0 4
[Sysname-line-vty0-4] authentication-mode none
To verify the configuration:
1. Telnet to the device.
<Client> telnet 192.168.1.241
Trying 192.168.1.241 ...
To Next Page
Loading...
