1. Manuals
  2. Brands
  3. Alcatel-Lucent Manuals
  4. Switch
  5. OmniSwitch AOS Release 6
  6. Manual

Connection Phase; Using Secure Shell Dsa Public Key Authentication; Starting A Secure Shell Session - Alcatel-Lucent OmniSwitch AOS Release 6 Manual

Omniswitch series
Hide thumbs
Table of Contents

Advertisement

Using Secure Shell

Connection Phase

After successful authentication, both the client and the server process the Secure Shell connection
protocol. The OmniSwitch supports one channel for each Secure Shell connection. This channel can be
used for a Secure Shell session or a Secure Shell FTP session.

Using Secure Shell DSA Public Key Authentication

The following procedure is used to set up Secure Shell (SSH) DSA public key authentication (PKA)
between an OmniSwitch and a client device:
Note. Note that if PKA fails, the user is prompted for a password. This is the password that was specified
when the user name was created on the OmniSwitch.
1
Use the PuTTYgen SSH software on the client device to generate a type SSH2 DSA private and public
key pair.
2
Do not save the public key on the client device using PutTTYgen. Instead, copy the key from the
PuTTYgen public key window and paste the key into a text file with the filename userid_dsa.pub. Spec-
ify a valid OmniSwitch user login name for the userid portion of the filename. For example, the following
public key filename is for OmniSwitch user Thomas:
thomas_dsa.pub
3
Use PuTTYgen to save the private key on the client device.
4
Verify that the userid specified as part of the filename in Step 2 is a valid user name on the
OmniSwitch. If the username does not already exist in the switch configuration, create the user name with
the appropriate privileges.
5
FTP in ASCII mode the userid_dsa.pub file from the client device to the flash/network/pub directory
on the OmniSwitch. Create the flash/network/pub directory first if it does not already exist.
6
Using PuTTY software on the client device, access SSH, then Auth, and then select the private key
generated in Step 1 to start the authentication process.
7
To enforce Secure Shell PKA on a switch use the
Note. If a public key file (i.e., thomas_dsa.pub) exists in the flash/network/pub directory on the switch ,
PKA is still used even if this method of authentication was disabled using the
command. Rename, move, or delete the public key file to ensure that PKA is disabled on the switch.

Starting a Secure Shell Session

To start a Secure Shell session, issue the
device you are connecting to.
You can use the
ssh6
hostname, over an IPv6 environment.
page 2-14
ssh
command and identify the IP address or hostname for the
command to start an SSHv6 session followed by the relevant IPv6 address or the
OmniSwitch AOS Release 6 Switch Management Guide
ssh enforce pubkey-auth
ssh enforce pubkey-auth
Logging Into the Switch
command.
July 2010
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Alcatel-Lucent OmniSwitch AOS Release 6

Related Content for Alcatel-Lucent OmniSwitch AOS Release 6

This manual is also suitable for:

Omniswitch aos 6

Table of Contents