398 
# Create a local device management user named client001. Authorize the user to use the SSH 
service and assign the network-admin user role to the user. 
[SwitchB] local-user client001 class manage 
[SwitchB-luser-manage-client001] service-type ssh 
[SwitchB-luser-manage-client001] authorization-attribute user-role network-admin 
[SwitchB-luser-manage-client001] quit 
# Create an SSH user named client001. Specify the publickey authentication method for the 
user and specify client256 as the PKI domain for verifying the client's certificate. 
[Switch] ssh user client001 service-type stelnet authentication-type publickey assign 
pki-domain client256 
4.  Establish an SSH connection to the Stelnet server based on the 128-bit Suite B algorithms: 
# Establish an SSH connection to the server at 192.168.1.40. 
<SwitchA>  ssh2 192.168.1.40 suite-b 128-bit pki-domain client256 server-pki-domain 
server256 
Username: client001 
Press CTRL+C to abort. 
Connecting to 192.168.1.40 port 22. 
Enter a character ~ and a dot to abort. 
 
****************************************************************************** 
* Copyright (c) 2010-2016 Hewlett Packard Enterprise Development LP          * 
* Without the owner's prior written consent,                                 * 
* no decompiling or reverse-engineering shall be allowed.                    * 
****************************************************************************** 
 
<SwitchB> 
SFTP configuration examples 
Unless otherwise noted, devices in the configuration examples operate in non-FIPS mode. 
When the device acts as an SFTP server operating in FIPS mode, only ECDSA and RSA key pairs 
are supported. Do not generate a DSA key pair on the SFTP server. 
Password authentication enabled SFTP server configuration 
example 
Network requirements 
As shown in Figure 111: 
•  The switch acts as the SFTP server and uses password authentication. 
•  The username and password of the client are saved on the switch. 
Establish an SFTP connection between the host and the switch, so you can log in to the switch to 
manage and transfer files.