3Com 4500G Family Configuration Manual page 691

Hide thumbs Also See for 4500G Family:

Getting started manual (92 pages)

Datasheet (8 pages)

Product manual (15 pages)

Table of Contents

# Create an IP address for VLAN interface 1, which the SSH client will use as the destination for SSH

[SwitchB] interface vlan-interface 1

[SwitchB-Vlan-interface1] ip address 10.165.87.136 255.255.255.0

[SwitchB-Vlan-interface1] quit

# Set the authentication mode for the user interfaces to AAA.

[SwitchB] user-interface vty 0 4

[SwitchB-ui-vty0-4] authentication-mode scheme

# Enable the user interfaces to support SSH.

[SwitchB-ui-vty0-4] protocol inbound ssh

[SwitchB-ui-vty0-4] quit

# Create local user client001.

[SwitchB] local-user client001

[SwitchB-luser-client001] password simple aabbcc

[SwitchB-luser-client001] service-type ssh

[SwitchB-luser-client001] authorization-attribute level 3

[SwitchB-luser-client001] quit

# Specify the service type for user client001 as Stelnet, and the authentication type as password. This

step is optional.

[SwitchB] ssh user client001 service-type stelnet authentication-type password

Establish a connection between the SSH client and the SSH server

# Configure an IP address for VLAN interface 1.

<SwitchA> system-view

[SwitchA] interface vlan-interface 1

[SwitchA-Vlan-interface1] ip address 10.165.87.137 255.255.255.0

[SwitchA-Vlan-interface1] quit

[SwitchA] quit

If the client support first-time authentication, you can directly establish a connection from the client

to the server.

# Establish an SSH connection to server 10.165.87.136.

<SwitchA> ssh2 10.165.87.136

Username: client001

Trying 10.165.87.136 ...

Press CTRL+K to abort

Connected to 10.165.87.136 ...

The Server is not authenticated. Continue? [Y/N]:y

Do you want to save the server public key? [Y/N]:n

Enter password:

After you enter the correct username, you can log into Switch B successfully.

If the client does not support first-time authentication, you need to perform the following

configurations.

# Disable first-time authentication.

[SwitchA] undo ssh client first-time

# Configure the host public key of the SSH server. You can get the server host public key by using the

display public-key local dsa public command on the server.

[SwitchA] public-key peer key1

[SwitchA-pkey-public-key] public-key-code begin

[SwitchA-pkey-key-code]308201B73082012C06072A8648CE3804013082011F0281810

Show Quick Links

Chapters

Table of Contents

Troubleshooting

3Com 4500G Family Configuration Manual page 691

Hide quick links:

Chapters

Troubleshooting

Related Manuals for 3Com 4500G Family

Related Products for 3Com 4500G Family

This manual is also suitable for:

Table of Contents