Table of Contents
Advertisement
Operation Manual – SSH2.0
Quidway S3100 Series Ethernet Switches
Table 1-4 Configure authentication type
Enter system view
Configure authentication type
for SSH users
Caution:
If RSA authentication type is defined, then the RSA public key of the client user must
be configured on the switch.
By default, no authentication type is specified for a new user, so they cannot access
the switch.
For the password-publickey authentication type: SSHv1 client users can access
the switch as long as they pass one of the two authentications. SSHv2 client users
can access the switch only when they pass both the authentications.
IV. Configuring server SSH attributes
Configuring server SSH authentication timeout time and retry times can effectively
assure security of SSH connections and avoid illegal actions.
Table 1-5 Configure server SSH attributes
Operation
Enter system view
Set SSH authentication
timeout time
Set SSH authentication
retry times
V. Configuring client public keys
You can configure RSA public keys for client users on the switch and specify RSA
private keys, which correspond to the public keys, on the client. Then client keys are
generated randomly by the SSH2.0 client software. This operation is not required for
password authentication type.
Operation
system-view
ssh
seconds
ssh
authentication-retries
times
Huawei Technologies Proprietary
Chapter 1 SSH Terminal Services
Command
system-view
ssh
user
authentication-type { password
| password-publickey | rsa| all }
Command
server
timeout
server
1-6
Remarks
—
username
Required
Remarks
—
Optional
The
timeout
time
defaults to 60 seconds.
Optional
The retry times defaults
to 3.
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
