Establishing A Connection Between The Ssh Client And The Server - H3C S9500E Series Security Configuration Manual

To do...
2. Enable the switch to support
first-time authentication
Disable first-time authentication
For successful authentication of an SSH client not supporting first-time authentication, the server
host public key must be configured on the client and the public key name must be specified.
Follow these steps to disable first-time authentication:
To do...
1. Enter system view
2. Disable first-time authentication
support
3. Configure the server public key
4. Specify the host public key
name of the server
Establishing a connection between the SSH client and the
server
Follow these steps to establish the connection between the SSH client and the server:
To do...
1. Establish a
connection
between the SSH
client and server,
and specify the
public key
algorithm,
preferred
Use the command...
ssh client first-time enable
Use the command...
system-view
undo ssh client first-time
See Configuring a client public key
ssh client authentication
server server assign publickey
keyname
Use the command...
ssh2 server [ port-number ] [ vpn-instance vpn-
instance-name ] [ identity-key { dsa | rsa } |
prefer-ctos-cipher { 3des | aes128 | des } |
For an prefer-ctos-hmac { md5 | md5-96 | sha1 |
IPv4 server sha1-96 } | prefer-kex { dh-group-exchange |
dh-group1 | dh-group14 } | prefer-stoc-cipher
{ 3des | aes128 | des } | prefer-stoc-hmac {
md5 | md5-96 | sha1 | sha1-96 } ] *
128
Remarks
Optional
By default, first-time authentication
is supported on a client.
Remarks
—
Optional
By default, first-time authentication
is supported on a client.
Required
The method of configuring server
public key on the client is similar to
that of configuring client public key
on the server.
Required
Remarks
Required
Use either
command in
user view.