Configuring A Client Public Key - HP 3600 v2 Series Security Configuration Manual
Hide thumbs
Also See for 3600 v2 Series:
- Command reference manual (510 pages) ,
- Configuration manual (441 pages) ,
- Installation manual (62 pages)
Table of Contents
Advertisement
To do...
Configure the user interface(s) to
support SSH login
CAUTION:
For more information about the authentication-mode and protocol inbound commands, see
•
Fundamentals Command Reference.
If you configure a user interface to support SSH, be sure to configure the corresponding authentication
•
mode with the authentication-mode scheme command.
•
For a user interface configured to support SSH, you cannot change the authentication mode. To change
the authentication mode, undo the SSH support configuration first.
Configuring a client public key
NOTE:
This configuration task is only necessary for SSH users using publickey authentication.
To allow an SSH user to pass publickey authentication and log in to the server, you must configure the
client's DSA or RSA host public key on the server, and configure the client to use the corresponding host
private key, so that the server uses the digital signature to authenticate the client.
You can manually configure the public key of an SSH client on the server, or import it from the public key
file:
•
Configure it manually. You can type or copy the public key to the SSH server. The public key must
have not been converted and be in the Distinguished Encoding Rules (DER) encoding format.
Import it from the public key file. During the import process, the server will automatically convert the
•
public key in the public key file to a string in Public Key Cryptography Standards (PKCS) format, and
save it locally. Before importing the public key, you must upload the public key file (in binary) to the
server through FTP or TFTP.
NOTE:
HP recommends you to configure a client public key by importing it from a public key file.
Configuring a client public key manually
Follow these steps to configure the client public key manually:
To do...
Enter system view
Enter public key view
Enter public key code view
Configure a client's host public key
Use the command...
protocol inbound { all | ssh }
Use the command...
system-view
public-key peer keyname
public-key-code begin
Enter the content of the host public
key
277
Remarks
Optional
All protocols are supported by
default.
Remarks
—
—
—
Required
Spaces and carriage returns are
allowed between characters.
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
