Configuring The First Successful Login To Another Device (Allocating An Rsa Public Key To The Ssh Server) - Huawei AR2200 Series Configuration Manual

Enterprise routers

Hide thumbs Also See for AR2200 Series:

Configuration manual (125 pages)

Product description (239 pages)

Hardware installation and maintenance manual (219 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

page of 211

/ 211
Contents
Table of Contents
Bookmarks

Table of Contents

Huawei AR2200 Series Enterprise Routers

Configuration Guide - Basic Configuration

Context

If the first-time authentication on the SSH client is enabled, the STelnet client does not check

the validity of the RSA public key when logging in to the SSH server for the first time. After

the login, the system automatically allocates the RSA public key and saves it for authentication

in next login.

Do as follows on the router that serves as an SSH client:

Procedure

Step 1 Run:

system-view

The system view is displayed.

Step 2 Run:

ssh client first-time enable

The first-time authentication on the SSH client is enabled.

By default, the first-time authentication on the SSH client is disabled.

----End

8.4.3 Configuring the First Successful Login to Another Device

(Allocating an RSA Public Key to the SSH Server)

To configure the first successful login to another device on the SSH client, you need to allocate

an RSA public key to the SSH server before the login.

Context

If the first-time authentication is not enabled on the SSH client, when the STelnet client logs in

to the SSH server for the first time, the STelnet client fails to pass the check on the RSA public

key validity and cannot log in to the server.So you need to allocate an RSA public key to the

SSH server before the STelnet client logs in to the SSH server.

Do as follows on the router that serves as an SSH client:

Issue 02 (2011-10-15)

NOTE

l The purpose of enabling the first-time authentication on the SSH client is to skip checking the validity

of the RSA public key of the SSH server when the STelnet client logs in to the SSH server for the first

time. The check is skipped because the STelnet server has not saved the RSA public key of the SSH

server.

l If the first-time authentication is not enabled on the SSH client, when the STelnet client logs in to the

SSH server for the first time, the STelnet client fails to pass the check on the RSA public key validity

and cannot log in to the server.

TIP

To ensure that the STelnet client can log in to the SSH server at the first attempt, you can assign the RSA

public key in advance to the SSH server on the SSH client in addition to enabling the first-time

authentication on the SSH client.

Huawei Proprietary and Confidential

8 Accessing Another Device

135

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

Configuring The First Successful Login To Another Device (Allocating An Rsa Public Key To The Ssh Server) - Huawei AR2200 Series Configuration Manual

Hide quick links:

Related Manuals for Huawei AR2200 Series

Related Content for Huawei AR2200 Series

Table of Contents