Authentication Phase; Connection Phase; Using Secure Shell Public Key Authentication (Pka); Using Secure Shell - Alcatel-Lucent OmniSwitch AOS Release 7 Manual

Switch management guide

Hide thumbs Also See for OmniSwitch AOS Release 7:

Manual (720 pages)

Manual (30 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

page of 204

/ 204
Contents
Table of Contents
Bookmarks

Table of Contents

Using Secure Shell

Authentication Phase

When the client tries to authenticate, the server determines the process used by telling the client which

authentication methods can be used. The client has the freedom to attempt several methods listed by the

server. The server will disconnect itself from the client if a certain number of failed authentications are

attempted or if a time-out period expires. Authentication is performed independent of whether the Secure

Shell interface or the SFTP file transfer protocol will be implemented.

Connection Phase

After successful authentication, both the client and the server process the Secure Shell connection

protocol.

Using Secure Shell Public Key Authentication (PKA)

Generating and copying Keys

The following procedure is used to set up Secure Shell PKA between an OmniSwitch and a client device.

The steps below use a userid of "new_ssh_user" on the OmniSwitch as an example:

Note: A comment must be provided when generating the public key (ex. remote_ssh_user@device) and

the key must be in the format show below.

<ssh-rsa | ssh-dsa> <encrypted key> <remote_ssh_user@device>

Example Key:

ssh-rsa AAAAB3NzaC1yc2EAAkjgnivubn9872435nsdg8dfsgfd8dfgfd7Rah1sqeyh6

v3v6Hji4sOXwn+jdhAHJTM2Iq1RjwccObEdYc67VM9+2ZwEipJI5HYl1qbYKTA0em0kwK

HNa+naIkWsTSwNj81HaAkaL21LMhcHnRytBfTeyySLgNHxy6VFX1ipMN3pdtQbJn0cfRI

evyxroMs7S+nMvhtr1lhrRzNaC3iW9OIskS9zNjKUd2Becj5+Bt1JHmlqu3Is9H67kySd

HeF1XTMVWHDo30n9msA1vB7Bqo1w26qzV3S97vbhrApQtYJAn0bIilVIAEasIYIbqrkTQ

/kmDO4uMpCDgZKta7bP+P3CjBrGmK1w98 remote_ssh_user@device

Use the ssh-keygen utility of the OpenSSH software suite to generate a private and public key pair as

show below:

#ssh-keygen -t rsa -C remote_ssh_user@device

Save the private key on the client device.

Copy the the public key to the switch in the preferred directory. Including the user id as part of the file-

name can help identify the different keys:

#scp ~/.ssh/new_ssh_user_rsa.pub admin@192.168.2.1:/flash/system

Verify that the userid that will use SSH is a valid user name on the OmniSwitch. If the username does

not already exist on the switch create the user name with the appropriate privileges.

Install the public key on the OmniSwitch for the specified user.

-> installsshkey new_ssh_user /flash/system/new_ssh_user_rsa.pub

page 1-12

OmniSwitch AOS Release 7 Switch Management Guide

Logging Into the Switch

March 2011

Table of Contents

This manual is also suitable for:

Omniswitch aos 7

Authentication Phase; Connection Phase; Using Secure Shell Public Key Authentication (Pka); Using Secure Shell - Alcatel-Lucent OmniSwitch AOS Release 7 Manual

Using Secure Shell

Authentication Phase

Connection Phase

Using Secure Shell Public Key Authentication (PKA)

Related Manuals for Alcatel-Lucent OmniSwitch AOS Release 7

Related Content for Alcatel-Lucent OmniSwitch AOS Release 7

This manual is also suitable for:

Table of Contents