Operation Manual - SSH Terminal Services
Quidway S5600 Series Ethernet Switches-Release 1510 Chapter 1
SSH Terminal Services
Huawei Technologies Proprietary
1-3
z The server authenticates the username information from the client. If the user is
configured as no authentication on the server, authentication stage is skipped and
session request stage starts directly.
z The client authenticates information from the user at the server till the
authentication succeeds or the connection is turned off due to authentication
timeout.
Note:
SSH supports two authentication types: password authentication and RSA
authentication.
(1) Password authentication works as follows:
z The client sends its username and password to the server.
z The server compares the username and password received with those configured
locally. The user is allowed to log on to the Switch if the usernames and passwords
match exactly.
(2) RSA authentication works as follows:
z Configure the RSA public key of the client user at the server.
z The client sends the member modules of its RSA public key to the server.
z The server checks the validity of the member module. If it is valid, the server
generates a random number, which is sent to the client after being encrypted with
RSA public key of the client.
z Both ends calculate authentication data based on the random number and session
ID.
z The client sends the authentication data calculated back to the server.
z The server compares it with its authentication data obtained locally. If they match
exactly, the user is allowed to access the switch.
4) Session request stage. The client sends session request messages to the server
which processes the request messages.
5) Interactive session stage. Both ends exchange data till the session ends.
1.1.2 SSH Server Configuration
The following table describes SSH server configuration tasks.
Table 1-1 Configure SSHv2.0 server
Configuration Keyword Description
Configure supported protocols
protocol inbound
Refer to the
“
Configuring
supported protocols
"
part of this manual.
To Next Page
Loading...
