Netconf Over Ssh Configuration Example - HPE FlexNetwork MSR Series Configuration Manual

Do you want to save the server public key? [Y/N]:n
client001@192.168.0.1's password:
remote.bin

NETCONF over SSH configuration example

Unless otherwise noted, the device in the configuration example operates in non-FIPS mode.
When the device acts as a NETCONF-over-SSH server operating in FIPS mode, only ECDSA and
RSA key pairs are supported. Do not generate a DSA key pair on the NETCONF-over-SSH server.
Network requirements
As shown in
•
The router uses local password authentication.
•
The client's username client001 and password aabbcc are saved on the router.
Establish a NETCONF-over-SSH connection between the host and the router, so that you can log in
to the router as a network administrator to perform NETCONF operations.
Figure 161 Network diagram
NETCONF-over-SSH
client
192.168.1.56/24
Host
Configuration procedure
# Generate RSA key pairs.
<Router> system-view
[Router] public-key local create rsa
The range of public key modulus is (512 ~ 2048).
If the key modulus is greater than 512, it will take a few minutes.
Press CTRL+C to abort.
Input the modulus length [default = 1024]:
Generating Keys...
........................++++++
...................++++++
..++++++++
............++++++++
Create the key pair successfully.
# Generate a DSA key pair.
[Router] public-key local create dsa
The range of public key modulus is (512 ~ 2048).
If the key modulus is greater than 512, it will take a few minutes.
Press CTRL+C to abort.
Input the modulus length [default = 1024]:
Generating Keys...
Figure 167:
GE1/0/1
192.168.1.40/24
NETCONF-over-SSH
server
Router
505
100% 2875 2.8KB/s 00:00