3Com 7757 Configuration Manual page 777

3com switch 7750 family

Hide thumbs Also See for 7757:

Quick reference manual (94 pages)

Installation manual (80 pages)

Product manual (15 pages)

Table of Contents

For the password-publickey authentication type: SSH1 client users can access

the switch as long as they pass one of the two authentications. SSH2.0 client

users can access the switch only when they pass both the authentications.

For the password authentication, username should be consistent with the

effective username defined in AAA; for the RSA authentication, username is

the SSH local username, so that there is no need to configure a local user in

Configuring server SSH attributes

Configuring server SSH authentication timeout time, retry times, server keys

update interval and SSH compatible mode can effectively assure security of SSH

connections by avoiding illegal actions such as malicious password guessing.

Table 613 Configure server SSH attributes

Enter system view

Set SSH authentication

timeout time

Set SSH authentication retry

Set server keys update interval ssh server rekey-interval

Set SSH server compatible

with SSH1.x client

Configuring a Client Public Key

You can configure RSA public keys for client users on the switch and specify RSA

private keys, which correspond to the public keys, on the client. The client public

keys are generated randomly by the SSH2.0 client. This operation is not required

for password authentication type.

On the other hand, you can import the RSA public key of an SSH user from the

public key file. When the rsa peer-public-key keyname import sshkey filename

command is executed, the system will transform the format of the public key file

created on the client into the public key cryptography standards (PKCS) format

and configure the client public key automatically. Before the configuration above,

the client must upload the public key file of the RSA key to the server by using

Table 614 Configure client public keys

Enter system view

Enter public key view

ssh server timeout seconds

authentication-retries times

compatible-ssh1x enable

rsa peer-public-key

SSH Terminal Services

The timeout time defaults to

The retry times defaults to 3.

By default, the system does

not update server keys.

By default, SSH server is

compatible with SSH1.x client.

Troubleshooting

7750 7758 7754

3Com 7757 Configuration Manual page 777

Troubleshooting

Related Manuals for 3Com 7757

Related Products for 3Com 7757

This manual is also suitable for:

Table of Contents