EasyManua.ls Logo

Huawei AR2200 Series - Page 182

Huawei AR2200 Series
211 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
[Huawei-ui-vty0-4] protocol inbound ssh
[Huawei-ui-vty0-4] quit
# Create users ssh1@ssh.com and ssh2@ssh.com on the SSH server and set the authentication
mode.
[Huawei] aaa
[Huawei-aaa] local-user ssh1@ssh.com password cipher huawei
[Huawei-aaa] local-user ssh2@ssh.com password cipher huawei
[Huawei-aaa] quit
Step 4 Configure a RADIUS server template.
# Configure an authentication scheme newscheme and set the authentication mode to RADIUS
authentication.
[Huawei] aaa
[Huawei-aaa] authentication-scheme newscheme
[Huawei-aaa-authen-newscheme] authentication-mode radius
[Huawei-aaa-authen-newscheme] quit
# Configure a RADIUS server template ssh on the SSH server.
[Huawei] radius-server template ssh
# Specify the RADIUS server at 10.164.6.49 as the RADIUS authentication and set the
authentication port number to 1812.
[Huawei-radius-ssh] radius-server authentication 10.164.6.49 1812
# Set the shared key of the RADIUS server to huawei.
[Huawei-radius-ssh] radius-server shared-key cipher huawei
[Huawei-radius-ssh] quit
Step 5 Configure the RADIUS domain name on the SSH server.
# Set the RADIUS domain name to ssh.com and apply the authentication scheme newscheme
and RADIUS server template ssh to the RADIUS domain.
[Huawei] aaa
[Huawei-aaa] domain ssh.com
[Huawei-aaa-domain-ssh.com] authentication-scheme newscheme
[Huawei-aaa-domain-ssh.com] radius-server ssh
[Huawei-aaa-domain-ssh.com] quit
[Huawei-aaa] quit
Step 6 Connect the SSH client to the SSH server.
# Enable the SFTP service on the SSH server.
[Huawei] sftp server enable
# Enable initial authentication on the SSH client if it logs in for the first time.
[client] ssh client first-time enable
[client] quit
# Log in to the SSH server from the STelnet client in RADIUS authentication mode.
<client> system-view
[client] stelnet 10.164.39.222
Please input the username: ssh1@ssh.com
Trying 10.164.39.222 ...
Press CTRL+K to abort
Connected to 10.164.39.222 ...
The server is not authenticated. Do you continue to access it?(Y/N):y
Save the server's public key? [Y/N] :y
Huawei AR2200 Series Enterprise Routers
Configuration Guide - Basic Configuration 8 Accessing Another Device
Issue 02 (2011-10-15) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
171

Table of Contents

Other manuals for Huawei AR2200 Series

Preview: Quick Start Guide
Quick Start Guide12 pages
Preview: Usage Guide
Usage Guide69 pages
Preview: Hardware Installation And Maintenance Guide
Hardware Installation And Maintenance Guide219 pages

Related product manuals