Public-Key Local Create - H3C s3600 series Command Manual

As SSH clients access the SSH server through VTY user interfaces, you need configure the VTY user
interfaces of the SSH server to support remote SSH login.
If you have configured a user interface to support SSH protocol, to ensure a successful login to the
user interface, you must configure AAA authentication for the user interface by using the
authentication-mode scheme command.
For a user interface, if you have executed the authentication-mode password or
authentication-mode none command, the protocol inbound ssh command cannot be executed;
if you have executed the protocol inbound ssh command, neither of the authentication-mode
password and authentication-mode none commands can be executed.
Examples
# Configure vty0 through vty4 to support SSH only.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] user-interface vty 0 4
[Sysname-ui-vty0-4] authentication-mode scheme
[Sysname-ui-vty0-4] protocol inbound ssh

public-key local create

Syntax
public-key local create { dsa | rsa }
View
System view
Parameters
dsa: Specifies the DSA key pair.
rsa: Specifies the RSA key pair.
Description
Use the public-key local create command to create a local DSA key pair or RSA key pair.
Note that:
Generating the RSA and DSA key pairs on the server is prerequisite to SSH login.
After entering this command, you will be prompted to provide the length of the key pair. The length
of a server/host key must be in the range 512 to 2048 bits and defaults to 1024. If the key pair
already exists, the system will ask you whether you want to overwrite it.
1-11