Publickey Authentication Enabled Sftp Client Configuration Example - HPE FlexNetwork 7500 Series Security Configuration Manual

Publickey authentication enabled SFTP client configuration
example
Network requirements
As shown in
the RSA public key algorithm.
Establish an SFTP connection between Switch A and Switch B, so that you can log in to Switch B to
manage and transfer files.
Figure 103 Network diagram
SFTP client
Vlan-int2
192.168.0.2/24
Switch A
Configuration procedure
In the server configuration, the client's host public key is required. Generate RSA key pairs on the
client before configuring the SFTP server.
1. Configure the SFTP client:
# Assign an IP address to VLAN-interface 2.
<SwitchA> system-view
[SwitchA] interface vlan-interface 2
[SwitchA-Vlan-interface2] ip address 192.168.0.2 255.255.255.0
[SwitchA-Vlan-interface2] quit
# Generate RSA key pairs.
[SwitchA] public-key local create rsa
The range of public key size is (512 ~ 2048).
If the key modulus is greater than 512, it will take a few minutes.
Press CTRL+C to abort.
Input the modulus length [default = 1024]:
Generating Keys...
........................++++++
...................++++++
..++++++++
............++++++++
Create the key pair successfully.
# Export the host public key to a public key file named pubkey.
[SwitchA] public-key local export rsa ssh2 pubkey
[SwitchA] quit
# Transmit the public key file pubkey to the server through FTP or TFTP. (Details not shown.)
2. Configure the SFTP server:
# Generate RSA key pairs.
<SwitchB> system-view
[SwitchB] public-key local create rsa
The range of public key size is (512 ~ 2048).
If the key modulus is greater than 512, it will take a few minutes.
Press CTRL+C to abort.
Figure 103, Switch B acts as the SFTP server, and it uses publickey authentication and
Vlan-int2
192.168.0.1/24
SFTP server
Switch B
351