Specifying A Source Ip Address/Interface For The Ssh Client; Configuring Whether First-Time Authentication Is Supported - H3C S5500-EI Series Security Configuration Manual
Hide thumbs
Also See for S5500-EI Series:
- Operation manual (1529 pages) ,
- Configuration manual (490 pages) ,
- Quick start manual (91 pages)
Table of Contents
Advertisement
Task
Configuring whether first-time authentication is supported
Establishing a connection between the SSH client and server
Setting the DSCP value for packets sent by the SSH client
Specifying a source IP address/interface for the SSH client
This configuration task allows you to specify a source IP address or interface for the client to access the
SSH server, improving service manageability.
To specify a source IP address or interface for the client:
Step
1.
Enter system view.
2.
Specify a source IP
address or interface for
the SSH client.
Configuring whether first-time authentication is supported
When the switch acts as an SSH client and connects to the SSH server, you can configure whether the
switch supports first-time authentication.
With first-time authentication, when an SSH client not configured with the server host public key
•
accesses the server for the first time, the user can continue accessing the server, and save the host
public key on the client. When accessing the server again, the client will use the saved server host
public key to authenticate the server.
Without first-time authentication, a client not configured with the server host public key will refuse to
•
access the server. To enable the client to access the server, you must configure the server host public
key and specify the public key name for authentication on the client in advance.
Enabling the switch to support first-time authentication
Step
1.
Enter system view.
2.
Enable the switch to support
first-time authentication.
Command
system-view
•
Specify a source IPv4 address or interface for the
SSH client:
ssh client source { ip ip-address | interface
interface-type interface-number }
•
Specify a source IPv6 address or interface for the
SSH client:
ssh client ipv6 source { ipv6 ipv6-address |
interface interface-type interface-number }
Command
system-view
ssh client first-time [ enable ]
323
Remarks
Optional
Required
Optional
Remarks
N/A
Select either approach.
By default, an SSH client
uses the IP address of
the outbound interface
defined by the route to
the SSH server to access
the SSH server.
Remarks
N/A
Optional.
By default, first-time authentication
is supported on a client.
Advertisement
Table of Contents
Troubleshooting
