Publickey Authentication Enabled Stelnet Client Configuration Example - HPE FlexNetwork 7500 Series Security Configuration Manual

<SwitchA> ssh2 192.168.1.40
Username: client001
Press CTRL+C to abort.
Connecting to 192.168.1.40 port 22.
The server is not authenticated. Continue? [Y/N]:y
Do you want to save the server public key? [Y/N]:y
client001@192.168.1.40's password:
Enter a character ~ and a dot to abort.
******************************************************************************
* Copyright (c) 2010-2015 Hewlett Packard Enterprise Development LP
* Without the owner's prior written consent,
* no decompiling or reverse-engineering shall be allowed.
******************************************************************************
<SwitchB>
After you enter the correct password, you can access Switch B successfully. At the next
connection attempt, the client authenticates the server by using the saved server's host
public key on the client.
Publickey authentication enabled Stelnet client configuration
example
Network requirements
As shown in
the DSA public key algorithm.
Establish an Stelnet connection between Switch A and Switch B, so that you can log in to Switch B to
configure and manage Switch B.
Figure 99 Network diagram
Stelnet client
Vlan-int2
192.168.1.56/24
Switch A
Configuration procedure
In the server configuration, the client's host public key is required. Generate a DSA key pair on the
client before configuring the Stelnet server.
1. Configure the Stelnet client:
# Assign an IP address to VLAN-interface 2.
<SwitchA> system-view
[SwitchA] interface vlan-interface 2
[SwitchA-Vlan-interface2] ip address 192.168.1.56 255.255.255.0
[SwitchA-Vlan-interface2] quit
# Generate a DSA key pair.
[SwitchA] public-key local create dsa
The range of public key modulus is (512 ~ 2048).
If the key modulus is greater than 512, it will take a few minutes.
Figure 99, Switch B acts as the Stelnet server, and it uses publickey authentication and
Vlan-int2
192.168.1.40/24
Stelnet server
Switch B
342
*
*
*