l If the specified key-name is deleted in other views, the system prompts that the key does
not exist after the peer-public-key end command is run and the system view is
displayed.
6. Run:
peer-public-key end
Return to the system view from the public key view.
7. Run:
ssh user user-name assign rsa-key key-name
The public key is assigned to the SSH user.
l Authenticate SSH users through Password-RSA authentication.
– Run:
ssh user user-name authentication-type password-rsa
Password-RSA authentication is configured for SSH users.
In Password-RSA authentication mode, the SSH server authenticates a client by checking
both the public key and the password. The client can be authenticated only when both the
public key and the password meet the requirement.
l Authenticate SSH users through All authentication.
– Run:
ssh user user-name authentication-type all
All authentication is configured for SSH users.
In All authentication mode, the SSH server authenticates a client by checking the public key
or password. The client can be authenticated only when either the public key or the password
meet the requirement.
Step 7 (Optional) Configure basic authentication information for SSH users.
1. Run:
ssh server rekey-interval interval
The interval for updating the server key pair is configured.
By default, the interval for updating the key pair of the SSH server is 0, indicating that the
key pair is not updated.
2. Run:
ssh server auth-timeout timeout_interval
The timeout interval of SSH authentication is set.
By default, the timeout interval is 60 seconds.
3. Run:
ssh server authentication-retries auth-times
The number of retry times of SSH authentication is set.
By default, the retry times is 3.
----End
6.4.5 Enabling the SFTP Service
The STelnet service must be enabled before it can be used.
Huawei AR1200 Series Enterprise Routers
Configuration Guide - Basic Configuration 6 Managing the File System
Issue 04 (2012-05-15) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
121
To Next Page
Loading...
