Enabling The Ssh Server Function - HP 5920 Series Configuration Manual

The public-key local create rsa command generates a server key pair and a host key pair for RSA.
•
SSH1 uses the public key in the server key pair of the SSH server to encrypt the session key before
transmitting the session key. Because SSH2 uses the DH algorithm to separately generate the
session key on the SSH server and the client, no session key transmission is required and thus the
server key pair is not used in SSH2.
• The public-key local create dsa command generates only a host key pair. SSH1 does not support
the DSA algorithm.
The key modulus length must be less than 2048 bits when you use the public-key local create dsa
•
command to generate the DSA key pair on the SSH server.
The public-key local create ecdsa command generates only a host key pair.
•
• In Release 231 1P04 and later versions, the SSH application starts when you execute an SSH
configuration command. The device automatically generates RSA key pairs if no local key pairs
have been created by using the public-key local create command.
Configuration procedure
To generate local key pairs on the SSH server:
Step
1. Enter system view.
2. Generate local key pairs.

Enabling the SSH server function

The SSH server function on the device allows clients to communicate with the device through SSH.
The device that acts as an SSH server does not support SFTP or SCP connection initiated by an SSH1
client.
To enable the SSH server function:
Step
1. Enter system view.
2. Enable the SSH server
function.
Command
system-view
•
In Release 2307 and Release
2310:
public-key local create { dsa |
rsa }
•
In Release 231 1P04 and later
versions:
In non-FIPS mode:
public-key local create { dsa
| ecdsa { secp192r1 |
secp256r1 } | rsa }
In FIPS mode:
public-key local create { dsa
| ecdsa secp256r1 | rsa }
Command
system-view
ssh server enable
273
Remarks
N/A
By default, no local key pairs exist.
Remarks
N/A
By default, the SSH server function
is disabled.