HP ProCurve 9304M Security Manual page 80

Routing switches

Hide thumbs Also See for ProCurve 9304M:

Management and configuration manual (690 pages)

Installation and configuration manual (504 pages)

Installation and getting started manual (348 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

page of 172

/ 172
Contents
Table of Contents
Bookmarks

Table of Contents

Security Guide for ProCurve 9300/9400 Series Routing Switches

ProCurveRS# show ip client-pub-key

1024 65537 162566050678380006149460550286514061230306797782065166110686648548574

94957339232259963157379681924847634614532742178652767231995746941441604714682680

00644536790333304202912490569077182886541839656556769025432881477252978135927821

67540629478392662275128774861815448523997023618173312328476660721888873946758201

user@csp_client

1024 35 152676199889856769693556155614587291553826312328095300428421494164360924

76207475545234679268443233762295312979418833525975695775705101805212541008074877

26586119857422702897004112168852145074087969840642408451742714558592361693705908

74837875599405503479603024287131312793895007927438074972787423695977635251943 ro

ot@unix_machine

There are 2 authorized client public keys configured

Syntax: show ip client-pub-key

To clear the public keys from the active configuration, enter the following command:

ProCurveRS# clear public-key

Syntax: clear public-key

To reload the public keys from the file on the TFTP server, enter the following command:

ProCurveRS(config)# ip ssh pub-key-file reload

Syntax: ip ssh pub-key-file reload

Once the public keys are part of the active configuration, you can make them part of the startup-config file. The

startup-config file can contain a maximum of 10 public keys. If you want to store more than 10 public keys, keep

them in a file on a TFTP server, where they will be loaded into the active configuration when the device is booted.

To make the public keys in the active configuration part of the startup-config file, enter the following commands:

ProCurveRS(config)# ip ssh pub-key-file flash-memory

ProCurveRS(config)# write memory

Syntax: ip ssh pub-key-file flash-memory

To clear the public keys from the startup-config file (if they are located there), enter the following commands:

ProCurveRS# clear public-key

ProCurveRS# write memory

Enabling RSA Challenge-Response Authentication

RSA challenge-response authentication is enabled by default. You can disable or re-enable it manually.

To enable RSA challenge-response authentication:

ProCurveRS(config)# ip ssh rsa-authentication yes

To disable RSA challenge-response authentication:

ProCurveRS(config)# ip ssh rsa-authentication no

Syntax: ip ssh rsa-authentication yes | no

Setting Optional Parameters

You can adjust the following SSH settings on the HP device:

•

The number of SSH authentication retries

•

The server RSA key size

3 - 6

June 2005

Table of Contents

This manual is also suitable for:

J4139aProcurve 9308mJ4874a Procurve 9408sl J4138a J8680a ... Show all

HP ProCurve 9304M Security Manual page 80

Related Manuals for HP ProCurve 9304M

Related Products for HP ProCurve 9304M

This manual is also suitable for:

Table of Contents